New: 2026 Gartner® Market Guide for Adversarial Exposure Validation
Learn More
Cymulate named a Customers' Choice in 2025 Gartner® Peer Insights™
Learn More
New Research: The Security Tradeoffs Behind AI Tooling
Learn More
An Inside Look at the Technology Behind Cymulate
Learn More
Book a Demo
Book a Demo

Attackers Target Ukraine With GoMet Backdoor

August 1, 2022

Threat actors believed to be Russian state-sponsored attacked a software company in Ukraine with a slightly modified version of the open-source GoMet backdoor. For persistence, the malware executed a cronjob every two seconds to confirm a connection to the command-and-control server or replaced an existing autorun executable with the malware. The malicious software also opened a blank CMD process and executed the "systeminfo" command to gather data about the system.

Featured Resources

View More Resources
image
blog

MITRE ATT&CK v19 Unpacked: What Changed and How to Operationalize 

MITRE ATT&CK v19 introduces major changes that reshape how organizations understand and validate adversary behavior, including retiring the Defense Evasion tactic and introducing Stealth and Defense Impairment tactics.

Read More
CymuLab Live: A Hands-On Lab
Cymulate Event

CymuLab Live: A Hands-On Lab

Read More
CymuLab Live: A Hands-On Lab
Cymulate Event

CymuLab Live: A Hands-On Lab

Read More