Blog | G5 Cyber Security

GreyEnergy cyberespionage group targets Poland and Ukraine

ESET researchers have spotted a new strain of malware tracked as Exaramel that links the not Petya wiper to the Industroyer ICS malware. GreyEnergy conducted reconnaissance and cyber espionage activities in Ukraine and Poland, it focused its activities on energy and transportation industries, and other high-value targets. The malware is written in C and compiled using Visual Studio, it is deployed two ways: in memory-only mode without implementing persistence; in service DLL persistence; or in memory only mode.”]

Source: https://securityaffairs.co/wordpress/77218/apt/greyenergy-cyberespionage-group.html

Exit mobile version