UNC6032UNC6032
Also known as: UNC6032
Known aliases
1
Profile
UNC6032 is a threat actor that weaponizes interest in AI tools, specifically targeting users with fake "AI video generator" websites to distribute malware, including Python-based infostealers and backdoors. Victims are typically directed to these sites through malicious social media ads that impersonate legitimate tools. Compromises have led to the exfiltration of sensitive data, including login credentials and credit card information, via the Telegram API. Google Threat Intelligence Group assesses UNC6032 to have a Vietnam nexus.
Aliases· 1
UNC6032
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.