BADHATCH (16481e0f-49d5-54c1-a1fe-16d9e7f8d08c)
BADHATCH is a backdoor that has been utilized by FIN8 since at least 2019. BADHATCH has been used to target the insurance, retail, technology, and chemical industries in the United States, Canada, South Africa, Panama, and Italy.[Gigamon BADHATCH Jul 2019][BitDefender BADHATCH Mar 2021]
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| BADHATCH (16481e0f-49d5-54c1-a1fe-16d9e7f8d08c) | Tidal Software | FIN8 (b3061284-0335-4dcb-9f8e-a3b0412fd46f) | Tidal Groups | 1 |