IOC Radar
TLP:WHITE1 IOC

IIM – The Grammar of Adversary Infrastructure (3/7)

SS
Synaptic Systems
Published May 3, 2026Original Report

Threat Actors

Malware Families

Diamond Model

SOCIAL AXISTECHNOLOGY AXISADVERSARYGamaredonPlayINFRASTRUCTUREunknownCAPABILITYPlayVICTIMunknown
Adversary(2)
Infrastructure
Capability(1)
Victim

Attack Flow9 steps · MITRE ATT&CK mapped

ReconnaissanceTA0043·T1595
1/9
Scanning Access
ActionScan for network information
Adversaries may scan for information about target networks and systems to identify potential vulnerabilities and entry points.

5W+H Threat Analysis

Analysis unavailable

Indicators of Compromise

Indicators of Compromise1

TypeIndicatorConfidenceScoreFirst Seen
CVECVE-2025-6218
aptespionageexploit
Medium
54
Jun 2, 26

IOC Relationship Graph

IOC Relationship Graph1 total IOCs
CVE
CVE1Actors2Malware1REPORTIIM – The Grammar of AdverGamaredonPlayPlay
scroll to zoom · drag to pan · click IOC to open