BoxCaon (d3e46011-3433-426c-83b3-61c2576d5f71)
BoxCaon is a Windows backdoor that was used by IndigoZebra in a 2021 spearphishing campaign against Afghan government officials. BoxCaon's name stems from similarities shared with the malware family xCaon.[Checkpoint IndigoZebra July 2021]
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| IndigoZebra (988f5312-834e-48ea-93b7-e6e01ee0938d) | Tidal Groups | BoxCaon (d3e46011-3433-426c-83b3-61c2576d5f71) | Tidal Software | 1 |