UAC-0149UAC-0149

Also known as: UAC-0149

Known aliases
1

Profile

UAC-0149 is a threat actor targeting the Armed Forces of Ukraine with COOKBOX malware. They use obfuscation techniques like character encoding and base64 encoding to evade detection. The group leverages dynamic DNS services and Cloudflare Workers for their C2 infrastructure.

Aliases· 1

UAC-0149

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
UAC-0050
Actor
UAC-0245
Actor
UAC-0185
Actor
UAC-0239
Actor
UAC-0099
Actor
UAC-0226
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.