Slingshot (Malware Family)
By Fraunhofer FKIE
Archived: 2026-04-05 15:14:19 UTC
- 2012 first sighted
- Attack vector via compromised Mikrotik routers where victims get infection when they connect to Mikrotik
router admin software - Winbox
- 2018 when discovered by Kaspersky Team
Infection Vector
- Infected Mikrotik Router > Malicious DLL (IP4.dll) in Router > User connect via winbox > Malicious DLL
downloaded on computer
[TLP:WHITE] win_slingshot_auto (20241030 | Detects win.slingshot.)
Source: https://malpedia.caad.fkie.fraunhofer.de/details/win.slingshot
https://malpedia.caad.fkie.fraunhofer.de/details/win.slingshot
Page 1 of 1