UNC4736UNC4736

Also known as: UNC4736

Known aliases
1

Profile

UNC4736 is a North Korean threat actor that has been involved in supply chain attacks targeting software chains of 3CX and X_TRADER. They have used malware strains such as TAXHAUL, Coldcat, and VEILEDSIGNAL to compromise Windows and macOS systems. UNC4736 has been linked to financially motivated cybercrime operations, particularly focused on cryptocurrency and fintech-related services. They have also demonstrated infrastructure overlap with other North Korean and APT43 activity.

Aliases· 1

UNC4736

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
UNC5342
Actor
UNC4536
Actor
UNC3886
Actor
UNC4841
Actor
UNC3569
Actor
UNC6691
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.