Malware

DeathStalker

First seen: 2018-01 • Status: active

Currently Active Threat

DeathStalker is a hacker-for-hire group that steals corporate secrets from law firms and financial companies.

Overview

DeathStalker is a mercenary hacker group targeting law firms, financial companies, and consultancies for corporate espionage.

How It Spreads

  • Spear-phishing
  • Malicious documents

What It Does

  • Corporate espionage
  • Financial data theft
  • Legal document theft

Is your business exposed?

Target Platforms

Windows

Detection Tips

  • Monitor for DeathStalker TTPs
  • Watch law firm targeting

MITRE ATT&CK Techniques

T1566, T1005

If You're Infected

  1. 1.

    Audit sensitive document access

  2. 2.

    Engage legal incident response

Related Malware

Evilnum

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices