APT_REPORT/muddywater/README.MD

## 202304

SimpleHarm: Tracking MuddyWater’s infrastructure

https://www.group-ib.com/blog/muddywater-infrastructure/


## This report collection about member and attack technology. https://twitter.com/blackorbird

### member

Muddywaters: how MuddyWater hackers attacked a Turkish military electronics manufacturer
https://habr.com/ru/company/group-ib/blog/452540/

MUDDYWATER CYBER SPY
https://0xffff0800.blogspot.com/2019/06/a-muddywater-cyber-spy.html

### attack

MuddyWater Resurfaces, Uses Multi-Stage Backdoor POWERSTATS V3 and New Post-Exploitation Tools
https://blog.trendmicro.com/trendlabs-security-intelligence/muddywater-resurfaces-uses-multi-stage-backdoor-powerstats-v3-and-new-post-exploitation-tools/

Summary of recent attacks by MuddyWater against Tajikistan, Turkey and other places
https://mp.weixin.qq.com/s/a_LB0e4FiLFra54upu7X-Q

Iranian APT group ‘MuddyWater’ Adds Exploits to Their Arsenal
https://www.clearskysec.com/muddywater2/

### new operation

https://socradar.io/dark-web-profile-muddywater-apt-group/
-												Update README.MD
											
										
										
											2023-04-20 16:20:18 +08:00
+								## 202304
 								SimpleHarm: Tracking MuddyWater’s infrastructure
 								https://www.group-ib.com/blog/muddywater-infrastructure/
-												Update README.MD
											
										
										
											2019-06-11 18:02:50 +08:00
+								## This report collection about member and attack technology. https://twitter.com/blackorbird
-												Create README.MD
											
										
										
											2019-06-11 18:02:12 +08:00
-												Update README.MD
											
										
										
											2019-06-11 18:10:11 +08:00
+								### member
-												Create README.MD
											
										
										
											2019-06-11 18:02:12 +08:00
-												Update README.MD
											
										
										
											2019-06-11 18:19:35 +08:00
+								Muddywaters: how MuddyWater hackers attacked a Turkish military electronics manufacturer
-												Create README.MD
											
										
										
											2019-06-11 18:02:12 +08:00
+								https://habr.com/ru/company/group-ib/blog/452540/
-												Update README.MD
											
										
										
											2019-06-11 18:19:35 +08:00
+								MUDDYWATER CYBER SPY
-												Update README.MD
											
										
										
											2019-06-11 18:10:11 +08:00
+								https://0xffff0800.blogspot.com/2019/06/a-muddywater-cyber-spy.html
-												Create README.MD
											
										
										
											2019-06-11 18:02:12 +08:00
-												Update README.MD
											
										
										
											2019-06-11 18:10:11 +08:00
+								### attack
-												Create README.MD
											
										
										
											2019-06-11 18:02:12 +08:00
-												Update README.MD
											
										
										
											2019-06-11 18:10:11 +08:00
+								MuddyWater Resurfaces, Uses Multi-Stage Backdoor POWERSTATS V3 and New Post-Exploitation Tools
-												Create README.MD
											
										
										
											2019-06-11 18:02:12 +08:00
+								https://blog.trendmicro.com/trendlabs-security-intelligence/muddywater-resurfaces-uses-multi-stage-backdoor-powerstats-v3-and-new-post-exploitation-tools/
-												Update README.MD
											
										
										
											2019-06-11 18:03:15 +08:00
-												Update README.MD
											
										
										
											2019-06-11 18:10:11 +08:00
+								Summary of recent attacks by MuddyWater against Tajikistan, Turkey and other places
 								https://mp.weixin.qq.com/s/a_LB0e4FiLFra54upu7X-Q
-												Update README.MD
											
										
										
											2019-06-11 18:03:15 +08:00
-												Update README.MD
											
										
										
											2019-06-11 18:10:11 +08:00
+								Iranian APT group ‘MuddyWater’ Adds Exploits to Their Arsenal
 								https://www.clearskysec.com/muddywater2/
-												Update README.MD
											
										
										
											2023-01-03 16:11:21 +08:00
 								### new operation
 								https://socradar.io/dark-web-profile-muddywater-apt-group/