APT / THREAT GROUP
Slave
2
aliases
Last seen:Mar 17, 2026
Intelligence Profile
Malware family tracked by Malpedia. ID: win.slave
Threat Analysis
Slave is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.
Intelligence Reports Mentioning Slave
Dutch Authorities Dismantle Botnet Linked to 17 Million Infected Devices
The Hacker News· May 31, 2026
Alleged Kimwolf Botmaster ‘Dort’ Arrested, Charged in U.S. and Canada
Krebs on Security· May 21, 2026
Authorities Disrupt SocksEscort Proxy Botnet Exploiting 369,000 IPs Across 163 Countries
The Hacker News· Mar 13, 2026
External References
Quick Facts
TypeAPT / Threat Group
Aliases2
Also Known As
Slavewin.slave
External Intelligence
Malpedia: win.slaveResearch Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.