Threat Group: REF5961
Threat Type: Backdoor Malware
Exploited Vulnerabilities: Potential exploitation of Microsoft Exchange ProxyLogon (CVE-2021-26855)
Malware Used: EAGERBEE, RUDEBIRD, DOWNTOWN
Threat Score: High (8.5/10) – Due to its focus on critical infrastructure, advanced evasion techniques, and persistent access capabilities.
Last Threat Observation: January 7, 2025
Overview
EAGERBEE is