TA551/Shathak threat research
A detailed report on the cyber crime group and its attacks
whitepaper
Approx. read time: 42 minutes
This report delves into the details of the malicious group TA551/Shathak and its campaigns.
TA551/Shathak is a sophisticated cyber crime actor targeting end-users on a global scale. The group has distributed different malware families over time, but consistently used password-protected ZIP archives containing macro-enabled Office documents. Previous families distributed have included Ursnif and Valak, with IcedID distribution starting in mid 2020.
The Mimecast Threat Research Team, in collaboration with Nettitude, has observed multiple TA551/ Shathak campaigns over recent months to develop this threat intelligence report.
