RU

Cyber SerpCyber Serp

Also known as: UAC-0255 · Cyber Serp

Origin
RU
Known aliases
2

Profile

UAC-0255 is a threat actor that conducted a phishing campaign impersonating CERT-UA to distribute the AGEWHEEZE RAT, targeting organizations in Ukraine's public and private sectors. The campaign is part of a broader trend of using trusted identities to enhance victim engagement, as seen in previous activities like UAC-0190 and UAC-0252. CERT-UA identified UAC-0255 after discovering links to the CyberSerp Telegram channel, which claimed responsibility for the attack. The activity is documented under the identifier CERT-UA#21075, with detection rules available for cybersecurity analysts.

Aliases· 2

UAC-0255Cyber Serp

References

  1. https://socprime.com/blog/uac-0255-distributing-agewheeze-rat/
  2. https://cert.gov.ua/article/6288047

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
UTA0355
Actor
UAC-0215
Actor
UAC-0185
Actor
UAC-0102
Actor
UTA0352
Actor
UAC-0154
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.