ETDA สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์
Electronic Transactions Development Agency
Home > List all groups > Muddled Libra

Threat Group Cards: A Threat Actor Encyclopedia

Permanent link APT group: Muddled Libra

NamesMuddled Libra (Palo Alto)
0ktapus (Group-IB)
Scattered Spider (CrowdStrike)
Scatter Swine (Okta)
MotivationInformation theft and espionage, Financial gain
First seen2022
Description(Palo Alto) Muddled Libra is a methodical adversary that poses a substantial threat to organizations in the software automation, BPO, telecommunications and technology industries. They are proficient in a range of security disciplines, able to thrive in relatively secure environments and execute rapidly to complete devastating attack chains.

Muddled Libra doesn’t bring anything new to the table except for the uncanny knack of stringing together weaknesses to disastrous effect. Defenders must combine cutting-edge technology and comprehensive security hygiene, as well as diligent monitoring of external threats and internal events. The high-stakes risk of loss of internal and customer data is a strong incentive to modernize information security programs.
ObservedSectors: IT, Technology, Telecommunications.
Tools usedDCSync, Impacket, Mimikatz, ProcDump, PsExec, SharpHound, WinRAR.

Last change to this card: 22 June 2023

Download this actor card in PDF or JSON format

Previous: MoustachedBouncer
Next: MuddyWater, Seedworm, TEMP.Zagros, Static Kitten

Digital Service Security Center
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents

Telephone +66 (0)2-123-1227
E-mail [email protected]