Intel Name: Frostygoop: analyzing malware artifacts and behavior
Date of Scan: November 28, 2024
Impact: Medium
Summary: “FrostyGoop’s Zoom-In: A Closer Look into the Malware Artifacts, Behaviors and Network Communications” explores the OT-centric malware FrostyGoop, which targeted Ukraine’s critical infrastructure in 2024. Using Modbus TCP communications, it disrupted power and heating services for over 600 apartment buildings. The article examines the malware’s behavior, newly discovered samples, and network communications, shedding light on its tactics and impact on industrial control systems (ICS). FrostyGoop serves as a key example of the rising threat posed by OT malware.