TI Mindmap HUB
Threat Intelligence Report

From Invoice to AnyDesk: Uncovering a Phishing Campaign Targeting Russian Aerospace Organizations

๐Ÿ“… July 7, 2026 ๐Ÿ“ฐ www.seqrite.com ๐Ÿ” 0 CVE(s) referenced

A sophisticated spear-phishing campaign, likely linked to the Rare Werewolf group, is targeting Russian aerospace organizations by abusing legitimate tools like AnyDesk and Blat to establish covert, persistent remote access and exfiltrate sensitive data while blending into normal system activity.

unclassified

Sign in to access the full report including:
detailed analysis, IOCs, MITRE ATT&CK mapping, and STIX bundle.

๐Ÿ” Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

๐Ÿ“Š Visual Mindmap
๐ŸŽฏ IOC Extraction
โš”๏ธ MITRE ATT&CK TTPs
๐Ÿ“ฆ STIX 2.1 Bundle