ZeroCleare (40fdcaac-a733-4088-9058-7b15a415b943)
ZeroCleare was used to execute a destructive attack that affected organizations in the energy and industrial sectorsin the Middle East. Based on the analysis of the malware and the attackers’ behavior, we suspect Iran-based nation state adversaries were involved to develop and deploy this new wiper.
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| ZeroCleare (a7e1429f-55bd-41ac-bf45-70c93465d113) | Malpedia | ZeroCleare (40fdcaac-a733-4088-9058-7b15a415b943) | Tool | 1 |