SysUpdate (148d587c-3b1e-4e71-bdfb-8c37005e7e77)
SysUpdate is a backdoor written in C++ that has been used by Threat Group-3390 since at least 2020.[Trend Micro Iron Tiger April 2021]
Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
---|---|---|---|---|
SysUpdate (148d587c-3b1e-4e71-bdfb-8c37005e7e77) | Tidal Software | Threat Group-3390 (79be2f31-5626-425e-844c-fd9c99e38fe5) | Tidal Groups | 1 |