FLASHFLOOD (44a5e62a-6de4-49d2-8f1b-e68ecdf9f332)
FLASHFLOOD is malware developed by APT30 that allows propagation and exfiltration of data over removable devices. APT30 may use this capability to exfiltrate data across air-gaps. [FireEye APT30]
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| APT30 (be45ff95-6c74-4000-bc39-63044673d82f) | Tidal Groups | FLASHFLOOD (44a5e62a-6de4-49d2-8f1b-e68ecdf9f332) | Tidal Software | 1 |