TTPwire Vol. 1 · MITRE ATT&CK·Tagged

← All stories

Infosecurity Magazine

Multi-Stage "BadPaw" Malware Campaign Targets Ukraine

2026-03-04 · Read original ↗

ATT&CK techniques detected

4 predictions
T1204.002Malicious File
77%
“multi - stage " badpaw " malware campaign targets ukraine a newly identified malware campaign leveraging a ukrainian email service to build credibility has been uncovered by cybersecurity researchers. the operation begins with an email sent from an address hosted on ukr [. ] net,…”
T1566.002Spearphishing Link
62%
“multi - stage " badpaw " malware campaign targets ukraine a newly identified malware campaign leveraging a ukrainian email service to build credibility has been uncovered by cybersecurity researchers. the operation begins with an email sent from an address hosted on ukr [. ] net,…”
T1566.001Spearphishing Attachment
39%
“multi - stage " badpaw " malware campaign targets ukraine a newly identified malware campaign leveraging a ukrainian email service to build credibility has been uncovered by cybersecurity researchers. the operation begins with an email sent from an address hosted on ukr [. ] net,…”
T1071Application Layer Protocol
31%
“s installation date. if the operating system is less than ten days old, execution stops, a tactic designed to avoid sandbox environments used by security analysts. if conditions are met, the malware searches for the original zip file and extracts additional components. persistenc…”

Summary

Malware campaign uses Ukrainian email service for credibility, deploying "BadPaw" to execute attacks