Helminth (d6560c81-1e7e-4d01-9814-4be4fb43e655)
Helminth is a backdoor that has at least two variants - one written in VBScript and PowerShell that is delivered via a macros in Excel spreadsheets, and one that is a standalone Windows executable. [Palo Alto OilRig May 2016]
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| OilRig (d01abdb1-0378-4654-aa38-1a4a292703e2) | Tidal Groups | Helminth (d6560c81-1e7e-4d01-9814-4be4fb43e655) | Tidal Software | 1 |