Gamaredon

Gamaredon X Turla collab

In this blogpost, we uncover the first known cases of collaboration between Gamaredon and Turla, in Ukraine. Key points of this blogpost: In February 2025, we discovered that the Gamaredon tool PteroGraphin was used to restart Turla’s Kazuar backdoor on a machine in Ukraine. In April and June 2025, we detected that Kazuar v2 was…

Gamaredon in 2024: Cranking out spearphishing campaigns against Ukraine with an evolved toolset

ellonjohns3 months ago013 mins

ESET Research analyzes Gamaredon’s updated cyberespionage toolset, new stealth-focused techniques, and aggressive spearphishing operations observed throughout 2024 02 Jul 2025 • , 6 min. read Since Russia’s full-scale invasion of Ukraine in February 2022, cyberespionage has played a crucial role in the broader threatscape. Russia-aligned advanced persistent threat (APT) groups have relentlessly targeted Ukrainian entities,…

Highlights

Using an oscilloscope’s zoom functions

Baby Steps isn’t done with Maxi Boch

Creating AI that matters

Zram

Category Collection

Gamaredon X Turla collab

Gamaredon in 2024: Cranking out spearphishing campaigns against Ukraine with an evolved toolset