Cyber Resilience

Campaign · all campaigns

2022 Ukraine Electric Power AttackC0034 state

🇷🇺 RU · GRU · Unit 74455

aka 2022 Ukraine Electric Power Attack

Run by Sandworm Team

Last updated: 2026-07-03

0attributed CVEs
16ATT&CK techniques
0.0IDF score (tooling uniqueness)
0exclusive CVEs
years active

About this actor

The [2022 Ukraine Electric Power Attack](https://attack.mitre.org/campaigns/C0034) was a [Sandworm Team](https://attack.mitre.org/groups/G0034) campaign that used a combination of GOGETTER, Neo-REGEORG, [CaddyWiper](https://attack.mitre.org/software/S0693), and living of the land (LotL) techniques to gain access to a Ukrainian electric utility to send unauthorized commands from their SCADA system.(Citation: Mandiant-Sandworm-Ukraine-2022)(Citation: Dragos-Sandworm-Ukraine-2022)

Source: MITRE ATT&CK

Activity timeline

No activity events recorded.

Profile

CVERiskCVSSEPSSPublishedProducts
No attributed CVEs.

Mitigating controls (NIST 800-53)

ControlTechniques coveredCoverage
AC-314 / 1688%
CM-214 / 1688%
SI-414 / 1688%
CM-613 / 1681%
AC-611 / 1669%
AC-210 / 1662%
AC-59 / 1656%
CM-79 / 1656%
SI-39 / 1656%
CM-58 / 1650%
IA-28 / 1650%
RA-58 / 1650%
CA-77 / 1644%
SI-77 / 1644%
SI-106 / 1638%

Co-occurring actors

None.

Similar actors