MoonPeak

Description

(Talos) This a XenoRAT-based malware, which is under active development by a North Korean nexus cluster we are calling “UAT-5394.” Our analysis of infrastructure used in the campaign reveals additional links to the UAT-5394 infrastructure and new tactics, techniques and procedures (TTPs) of the threat actor.

Names

Name
MoonPeak

Type

Backdoor

Information

https://blog.talosintelligence.com/moonpeak-malware-infrastructure-north-korea/

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.moonpeak

Other Information

Uuid

73a652ba-a6af-4e0c-a936-bd03af035699

Last Card Change

2024-12-27

Threat Intelligence Garden

Explorer

MoonPeak

MoonPeak

Description

Names

Category

Type

Information

Malpedia

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks