TI Mindmap HUB
Threat Intelligence Report

To Be (A Robot) or Not to Be: New Malware Attributed to Russia State-Sponsored COLDRIVER | Google Cloud Blog

📅 October 21, 2025 📰 cloud.google.com 🔍 0 CVE(s) referenced

Following public exposure of its LOSTKEYS malware, Russian state-sponsored group COLDRIVER rapidly pivoted to aggressively deploy a new, evolving chain of ROBOT-themed malware families—NOROBOT, YESROBOT, and MAYBEROBOT—targeting high-value individuals with advanced evasion and intelligence collection capabilities.

vendor

Sign in to access the full report including:
detailed analysis, IOCs, MITRE ATT&CK mapping, and STIX bundle.

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap
🎯 IOC Extraction
⚔️ MITRE ATT&CK TTPs
📦 STIX 2.1 Bundle