Rectifyq📃Title: Chinese Espionage Group TEMP.Periscope Targets Cambodia Ahead of July 2018 Elections and Reveals Broad Operations Globally
📅Date: 2018-07-10
🔗References:
🔖Rectifyq Taxonomies:
- relevancy: 🔴 Highly Relevant
- category: ⚔Threat
- sub-category: TA-profile
- target: targeted
- MY-relevancy: relevant
🔖MISP Galaxies:
- producer Google-Cloud-Blog
- threat-actor APT40
- target-information=“Cambodia”
- target-information=“Germany”
- target-information=“Indonesia”
- target-information=“Malaysia”
- target-information=“Philippines”
- target-information=“Switzerland”
- target-information=“Thailand”
- target-information=“United Kingdom”
- target-information=“United States”
- sector=“Academia - University”
- sector=“Chemical”
- sector=“Engineering”
- sector=“Government, Administration”
- sector=“Shipping”
- malpedia=“AIRBREAK”
- malpedia=“HTran”
- malpedia=“homefry”
- malpedia=“murkytop”
- malpedia=“scanbox”
- country=“china”
- mitre-attack-pattern=[]
MISP event uuid: 025e2482-fbbe-402c-9f57-7c0b70fe34cb
Indicator of Compromise (IoCs)
type,value,comment
url, en.freshnewsasia.com/index.php/en/8623-2018-04-26-10-12-46.html, 'AIRBREAK downloaders - Redirect Site (Not Malicious)'
domain, chemscalere.com, 'AIRBREAK C2'
url, iric.gov.kh/LICADHO/Interview-Questions.pdf, 'AIRBREAK downloaders - Redirect Site (Not Malicious)'
md5, c8fdd2b2ddec970fa69272fdf5ee86cc, 'AIRBREAK downloaders No sample in VT\r\nLast check:06/05/2025'
domain, scsnewstoday.com, 'AIRBREAK C2'
url, atimes.com/article/philippines-draws-three-hard-new-lines-on-china/, 'AIRBREAK downloaders - Redirect Site (Not Malicious)'
domain, mlcdailynews.com, 'AIRBREAK C2'
url, facebook.com/CNR.Movement/videos/190313618267633/, 'AIRBREAK downloaders - Redirect Site (Not Malicious)'
domain, partyforumseasia.com, 'AIRBREAK C2'
Full IOCs available in Rectifyq's MISP```