UTG-Q-008UTG-Q-008

Also known as: UTG-Q-008

Known aliases
1

Profile

UTG-Q-008 is a threat actor targeting Linux platforms, primarily focusing on government and enterprise entities in China. They utilize a massive botnet network for espionage activities, including reconnaissance, brute-forcing, and Trojan component delivery. The actor has a history of compromising thousands of servers in China using a password dictionary based on Chinese Pinyin. UTG-Q-008 operates during standard working hours in the UTC+8 time zone, with potential ties to Eastern Europe.

Aliases· 1

UTG-Q-008

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
UTG-Q-010
Actor
UTA0388
Actor
UAT-8099
Actor
UNG0002
Actor
UAT-8302
Actor
Storm-0940
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.