PowerExchange (7bea0cbb-83af-56e5-a88e-e450b8364d63)
PowerExchange is a PowerShell backdoor that has been used by OilRig since at least 2023 including against government targets in the Middle East.[Symantec Crambus OCT 2023]
Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
---|---|---|---|---|
OilRig (d01abdb1-0378-4654-aa38-1a4a292703e2) | Tidal Groups | PowerExchange (7bea0cbb-83af-56e5-a88e-e450b8364d63) | Tidal Software | 1 |