espionage
RussiaThreat Actor
RussiaThreat ActorActive Threat
Turla
178
IOCs Tracked
30
Intel Reports
Associated IOCs50 total
Domain50
ftpget.sh2026-06-05High
cryptex1.4.zip2026-06-05High
gagol.py2026-06-05High
64-7.67.5-signed.zip2026-06-05High
jack5tr.sh2026-06-05High
jbt.sh2026-06-05High
all.sh2026-06-05High
test.zip2026-06-05High
tftp.sh2026-06-05High
payload.zip2026-06-05High
phi.sh2026-06-05High
a-r.m-4.sakura2026-06-05High
1.zip2026-06-05High
majesticlubricants.com2026-06-05High
x-3.2-.sakura2026-06-05High
test.sh2026-06-05High
av.sh2026-06-05High
bins.sh2026-06-05High
i-5.8-6.sakura2026-06-05High
w.sh2026-06-05High
z.zip2026-06-04High
rs.sh2026-06-05High
invoice.zip2026-06-05High
unicore.zip2026-06-05High
fsfss264_down2.5.6.zip2026-06-05High
sogoupinyin_x64_v1.1_win.zip2026-06-05High
newinit.sh2026-06-05High
g.sh2026-06-05High
adb.sh2026-06-05High
rodriakd-8413d.appspot.com2026-06-05High
dk2.zip2026-06-05High
dk.zip2026-06-05High
tax_notice.zip2026-06-05High
payment_due_notice.zip2026-06-05High
giga.sh2026-06-05High
telnet.sh2026-06-05High
build_macosx.py2026-06-05High
agent.sh2026-06-05High
feishu_v2.1_x64_win.zip2026-06-05High
phantom.cs2.zip2026-06-05High
xone.cs2.zip2026-06-05High
launcher_src.py2026-06-05High
rusttweaker.zip2026-06-05High
goahead.sh2026-06-05High
ficeo.zip2026-06-05High
cat.sh2026-06-05High
m-i.p-s.sakura2026-06-05High
macosx.zip2026-06-05High
kla.sh2026-06-05High
pwko.zip2026-06-05High
Related Reports30 total
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Abuse.ch URLhaus (5000 entries)
Abuse.ch URLhaus
Maltrail IOC for 2026-05-22
CIRCL OSINT FeedMay 22, 2026
Kazuar: Anatomy of a nation-state botnet
Microsoft Threat IntelligenceMay 14, 2026
[Amadey] Targeted Analysis of its Campaign’s Kill Chain, String and Traffic Encryption Algorithm, and Download of Additional Modules
0x0d4y Malware ResearchJun 16, 2025
CVE-2017-0199 – Old Flaws New Techniques
Security InvestigationAug 22, 2022
RedLine Stealer returns with New TTPS – Detection & Response
Security InvestigationFeb 17, 2023
Vidar Infostealer Malware Returns with new TTPS – Detection & Response
Security InvestigationFeb 24, 2023
Cyber Conflict Briefing Q3 2025
DCSO CyTec BlogNov 18, 2025
Threat Profile
Motivationespionage
OriginRussia
RussiaLast seenJun 2026
IOCs tracked178