VPNFilter (895d769e-b288-4977-a4e1-7d64eb134bf9)
Advanced, likely state-sponsored or state-affiliated modular malware. The code of this malware overlaps with versions of the BlackEnergy malware. Targeted devices are Linksys, MikroTik, NETGEAR and TP-Link networking equipment in the small and home office (SOHO) space, as well as QNAP network-attached storage (NAS) systems.
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| VPNFilter (895d769e-b288-4977-a4e1-7d64eb134bf9) | Tool | VPNFilter (5ad30da2-2645-4893-acd9-3f8e0fbb5500) | Malpedia | 1 |