TI Mindmap HUB
Threat Intelligence Report

SloppyLemming Attack Techniques & BurrowShell Backdoor Explained

📅 June 17, 2026 📰 www.picussecurity.com 🔍 1 CVE(s) referenced

SloppyLemming is a persistent cyber-espionage group targeting South Asian critical sectors with custom malware—most notably the BurrowShell backdoor—by leveraging spearphishing, Cloudflare Workers abuse, and sophisticated evasion techniques to steal credentials and exfiltrate sensitive data.

unclassified
CVE-2023-38831

Sign in to access the full report including:
detailed analysis, IOCs, MITRE ATT&CK mapping, and STIX bundle.

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap
🎯 IOC Extraction
⚔️ MITRE ATT&CK TTPs
📦 STIX 2.1 Bundle