Uroburos (89ffc27c-b81f-473a-87d6-907cacdce61c)
Uroburos is a sophisticated cyber espionage tool written in C that has been used by units within Russia's Federal Security Service (FSB) associated with the Turla toolset to collect intelligence on sensitive targets worldwide. Uroburos has several variants and has undergone nearly constant upgrade since its initial development in 2003 to keep it viable after public disclosures. Uroburos is typically deployed to external-facing nodes on a targeted network and has the ability to leverage additional tools and TTPs to further exploit an internal network. Uroburos has interoperable implants for Windows, Linux, and macOS, employs a high level of stealth in communications and architecture, and can easily incorporate new or replacement components.[Joint Cybersecurity Advisory AA23-129A Snake Malware May 2023][Kaspersky Turla]
Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
---|---|---|---|---|
Uroburos (89ffc27c-b81f-473a-87d6-907cacdce61c) | Tidal Software | Turla (47ae4fb1-fc61-4e8e-9310-66dda706e1a2) | Tidal Groups | 1 |