TI Mindmap HUB
Threat Intelligence Report

MuddyWater APT + Tsundere Botnet: EtherHiding the C2

📅 March 13, 2026 📰 www.esentire.com 🔍 0 CVE(s) referenced

Iranian APT MuddyWater is leveraging the Russian-origin Tsundere botnet—using Ethereum smart contracts for stealthy C2 communication and MaaS tactics—to conduct advanced espionage campaigns while evading detection through obfuscation and CIS country checks.

vendor

Sign in to access the full report including:
detailed analysis, IOCs, MITRE ATT&CK mapping, and STIX bundle.

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap
🎯 IOC Extraction
⚔️ MITRE ATT&CK TTPs
📦 STIX 2.1 Bundle