GLOBAL SITUATIONMONITORING

482 published briefsUTCSun, Apr 5 20:57:17

Intelligence Tag

Malware Analysis

Analysis and reverse engineering of malware

1 intelligence brief← Intelligence Hub

UAT-10027 Targets U.S. Healthcare with Dohdoor Malware Using DoH C2

Researchers have uncovered a previously undocumented cyber campaign tracked as UAT-10027 targeting U.S. healthcare and education organizations with a new backdoor called Dohdoor that uses DNS-over-HTTPS to evade detection and deploy Cobalt Strike beacons.

Reza Rafati

Mar 8, 2026

4–6 minutes