| SYMBOL | COMMON_NAME | aka. SYNONYMS |
UAT-10362 is a threat actor identified by Cisco Talos, conducting spear-phishing campaigns targeting Taiwanese NGOs and suspected universities to deploy the malware "LucidRook." The malware features a multi-language modular design, layered anti-analysis capabilities, and stealth-focused payload handling. UAT-10362's operations rely on compromised or public infrastructure, indicating a mature level of operational tradecraft.
There are currently no families associated with this actor.
| 2026-04-07
⋅
Talos Intelligence
⋅
New Lua-based malware “LucidRook” observed in targeted attacks against Taiwanese organizations LucidKnight LucidPawn LucidRook UAT-10362 |