The article describes a Russian cyber campaign targeting Ukraine using two new malware strains, BadPaw and MeowMeow, which exploit a Windows zero-day vulnerability, CVE-2024-43451 (CVSS 6.5). Affected versions include Windows 10 1507 prior to 10.0.10240.20826, 1607 prior to 10.0.14393.7515, and 1809 prior to 10.0.17763.6532. The fixed versions for these releases are 10.0.10240.20826, 10.0.14393.7515, and 10.0.17763.6532, respectively.
2026-03-02 (Back to Inventory) Exposing a Russian Campaign Targeting Ukraine Using New Malware Duo: BadPaw and MeowMeow Author(s): ClearSky Organization: ClearSky win.badpaw Open article directly Related Articles 2025-11-30 ⋅ Twitter (@ClearskySec) ⋅ ClearSky Tweet about GamaWiper GamaWiper 2024-11-13 ⋅ ClearSky ⋅ ClearSky New Zero-Day Vulnerability Detected: CVE-2024-43451 SparkRAT 2024-11-13 ⋅ ClearSky ⋅ ClearSky CVE-2024-43451: A New Zero-Day Vulnerability Exploited in the wild SparkRAT UAC-0194