Derp.ca

DONOT

Donot malware is a sophisticated, high-level malware toolkit designed to collect and exfiltrate information from vulnerable systems. It has been used in targeted attacks against government and military organizations in Asia. Donot malware is highly complex and well-crafted, and it poses a serious threat to information security.

Linked Threat Actors

VICEROY TIGER

C2 Infrastructure

Hosting/VPS100%

Last 7 days

Apr 9, 2026
C2 Hosts: 2

Further Reading

APT-C-35 Gets a New Upgrade

Morphisec Labs exclusively details new updates to the Windows framework of the advanced persistent threat actors APT-C-35, a.k.a the DoNot Team.

blog.morphisec.com
The DoNot APT

The DoNot APT (aka APT-C-35) has been active since 2016. They have attacked many individuals and organisations in South Asia. […]

labs.k7computing.com
Foxit PDF “Flawed Design” Exploitation - Check Point Research

Check Point Research has identified an unusual pattern of behavior involving PDF exploitation, mainly targeting users of Foxit Reader. This exploit triggers security warnings that could deceive uns...

research.checkpoint.com