Iranian State-Sponsored OilRig Group Deploys 3 New Malware Downloaders
Iranian State-Sponsored OilRig Group Deploys 3 New Malware Downloaders
14 December 2023
The Iranian state-sponsored threat actor known as OilRig deployed three different downloader malware throughout 2022 to maintain persistent access to victim organizations located in Israel.
The three new downloaders have been named ODAgent, OilCheck, and OilBooster by Slovak cybersecurity company ESET. The attacks also involved the use of an updated version of a known OilRig downloader