Rectifyq📃Title: APT40: Examining a China-Nexus Espionage Actor
📅Date: 2019-03-04
🔗References:
🔖Rectifyq Taxonomies:
- relevancy: 🔴 Highly Relevant
- category: ⚔Threat
- sub-category: TA-profile
- target: targeted
- MY-relevancy: relevant
🔖MISP Galaxies:
- producer Google-Cloud-Blog
- threat-actor APT40
- target-information=“Belgium”
- target-information=“Germany”
- target-information=“Malaysia”
- target-information=“Norway”
- target-information=“Philippines”
- target-information=“Saudi Arabia”
- target-information=“United Kingdom”
- target-information=“United States”
- target-information=“Cambodia”
- sector=“Aerospace”
- sector=“Chemical”
- sector=“Construction”
- sector=“Education”
- sector=“Engineering”
- sector=“Government, Administration”
- sector=“High tech”
- sector=“Industrial”
- sector=“Research - Innovation”
- sector=“Telecoms”
- sector=“Transport”
- malpedia=“AIRBREAK”
- malpedia=“BLACKCOFFEE”
- malpedia=“CHINACHOPPER”
- malpedia=“Cobalt Strike”
- malpedia=“Derusbi (Windows)”
- malpedia=“GRILLMARK”
- malpedia=“Ghost RAT”
- malpedia=“LunchMoney”
- malpedia=“MimiKatz”
- malpedia=“PlugX”
- malpedia=“ZXShell”
- malpedia=“badflick”
- malpedia=“gsecdump”
- malpedia=“homefry”
- malpedia=“murkytop”
- malpedia=“scanbox”
- country=“china”
- mitre-attack-pattern=[]
MISP event uuid: e992f61a-b40f-4285-bf71-34a563e6794a
Indicator of Compromise (IoCs)
type,value,comment
Full IOCs available in Rectifyq's MISP```