ODAgent (cbfbd3c1-15ec-51a2-92f8-4d71bb7dc28e)
ODAgent is a C#/.NET downloader that has been used by OilRig since at least 2022 including against target organizations in Israel to download and execute payloads and to exfiltrate staged files.[ESET OilRig Downloaders DEC 2023]
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| OilRig (d01abdb1-0378-4654-aa38-1a4a292703e2) | Tidal Groups | ODAgent (cbfbd3c1-15ec-51a2-92f8-4d71bb7dc28e) | Tidal Software | 1 |