FlyingYetiFlyingYeti
Also known as: FlyingYeti · Storm-1837 · Flying Yeti
Known aliases
3
Profile
FlyingYeti is a Russia-aligned threat actor targeting Ukrainian military entities. They conduct reconnaissance activities and launch phishing campaigns using malware like COOKBOX. FlyingYeti exploits the WinRAR vulnerability CVE-2023-38831 to infect targets with malicious payloads. Cloudforce One has successfully disrupted their operations and provided recommendations for defense against their phishing campaigns.
Aliases· 3
FlyingYetiStorm-1837Flying Yeti
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.