Group: BlackOasis

From enterprise
Jump to: navigation, search
ID G0063
Aliases BlackOasis

BlackOasis is a Middle Eastern threat group that is believed to be a customer of Gamma Group. The group has shown interest in prominent figures in the United Nations, as well as opposition bloggers, activists, regional news correspondents, and think tanks.12 A group known by Microsoft as NEODYMIUM is reportedly associated closely with BlackOasis operations, but evidence that the group names are aliases has not been identified.3

Alias Descriptions

  • BlackOasis - 12

Techniques Used

  • Obfuscated Files or Information - BlackOasis's first stage shellcode contains a NOP sled with alternative instructions that was likely designed to bypass antivirus tools.1