Industroyer (09398a7c-aee5-44af-b99d-f73d3b39c299)
Industroyer is a sophisticated malware framework designed to cause an impact to the working processes of Industrial Control Systems (ICS), specifically components used in electrical substations.[ESET Industroyer] Industroyer was used in the attacks on the Ukrainian power grid in December 2016.[Dragos Crashoverride 2017] This is the first publicly known malware specifically designed to target and impact operations in the electric grid.[Dragos Crashoverride 2018]
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| Industroyer (09398a7c-aee5-44af-b99d-f73d3b39c299) | Tidal Software | Sandworm Team (16a65ee9-cd60-4f04-ba34-f2f45fcfc666) | Tidal Groups | 1 |