Rocket Kitten

๐Ÿ”ด High
Also known as: TEMP.Beanie, Operation Woolen Goldfish, Operation Woolen-Goldfish, Thamar Reservoir, Timberworm, Rocket Kitten

Targets Saudi Arabia, Israel, US, Iran, high ranking defense officials, embassies of various target countries, notable Iran researchers, human rights activists, media and journalists, academic institutions and various scholars, including scientists in the fields of physics and nuclear sciences.

๐ŸŒ Country Iran
โšก Risk Level High
๐ŸŽฏ Incident Type Espionage
Activists Defense Journalist Research - Innovation Academia - University Government, Administration Government Military

Targeted Victims

Saudi Arabia Venezuela Afghanistan United Arab Emirates Iran Israel Iraq Kuwait Turkey Canada Yemen United Kingdom Egypt Syria Jordan

Introduction

Targets Saudi Arabia, Israel, US, Iran, high ranking defense officials, embassies of various target countries, notable Iran researchers, human rights activists, media and journalists, academic institutions and various scholars, including scientists in the fields of physics and nuclear sciences.

Activities and Tactics

Targeted Sectors: Activists, Defense, Journalist, Research - Innovation, Academia - University, Government, Administration, Government, Military

Country of Origin: ๐Ÿ‡ฎ๐Ÿ‡ท Iran

Risk Level: High

Incident Type: Espionage

Suspected Victims: Saudi Arabia, Venezuela, Afghanistan, United Arab Emirates, Iran, Israel, Iraq, Kuwait, Turkey, Canadaโ€ฆ

Notable Campaigns

Information pending cataloguing.

Tactics, Techniques, and Procedures (TTPs)

Information pending cataloguing.

Notable Indicators of Compromise (IOCs)

No curated IOCs are currently published for this actor. This section will be updated when stable, attributable indicators are available.

Malware and Tools

  • Arabian-Attacker RAT
  • Nuclear RAT
  • Archelaus Beta

Attribution and Evidence

Country of Origin: Iran Additional attribution information pending cataloguing.

References

References pending cataloguing.