Spectral Kitten

Iran

Details

SPECTRAL KITTEN is an Iranian state-nexus adversary active since at least 2019. Previously tracked as the ProfaneTalon activity cluster, the adversary’s activity is characterized by the deployment of its custom IPSecHelper implant and Apostle ransomware variant in disruptive operations. These intrusions are typically accompanied by aggressive “lock-and-leak” information operations, with the advers...

Community Identifiers

iJU91Dk760VAr5b

Objective

  • cfYnXrqbpMPy

Motivation

  • ezl6ZK5ufAt7irg

Contact our team about
IOCs for this adversary

?

During a cybersecurity incident, indicators of compromise (IoC) are clues and evidence of a data breach.

Resources

2023 Global Threat Report

Unlock the adversary universe