216.73.216.6

Intrusion sets

APT groups and intrusion sets — goals, aliases, sectors, and related campaigns.

  • REF3076
    AlienVault Confidence 100 3 Malwares 12 IOCs
    First seen 01/01/1970 · Last seen 16/11/5138 ·
  • LockBit, Cl0p, Refined Kitten, Wicked Panda, Fancy Bear
    AlienVault Confidence 100 20 MITREs 2 Malwares 2 IOCs
    First seen 01/01/1970 · Last seen 16/11/5138 ·
  • UAT-8302
    AlienVault Confidence 100 3 CVEs 20 MITREs 13 Malwares 35 IOCs
    First seen 01/01/1970 · Last seen 16/11/5138 ·
  • PhantomRaven
    AlienVault Confidence 100 1 CVE 20 MITREs 17 IOCs
    First seen 01/01/1970 · Last seen 16/11/5138 ·
  • Gleaming Pisces UNC1720UNC4736
    The MITRE Corporation Confidence 100 10 CVEs 30 MITREs 6 Malwares 18 IOCs 1 Campaign

    [AppleJeus](https://attack.mitre.org/groups/G1049) is a North Korean state-sponsored threat group attributed to the Reconnaissance General Bureau. Associated with the broader [Lazarus Group](https://attack.mitre.org/groups/G0032) umbrella of actors, [AppleJeus](https://attack.mitre.org/groups/G1049) has been active since…

    First seen 01/01/1970 · Last seen 16/11/5138 ·
  • APT3 Gothic PandaPirpi
    The MITRE Corporation Confidence 100 44 MITREs 4 Malwares 2 Tools

    [APT3](https://attack.mitre.org/groups/G0022) is a China-based threat group that researchers have attributed to China's Ministry of State Security.(Citation: FireEye Clandestine Wolf)(Citation: Recorded Future APT3 May 2017) This group is responsible…

    First seen 01/01/1970 · Last seen 16/11/5138 ·
  • Gamaredon Group IRON TILDENPrimitive Bear
    The MITRE Corporation Confidence 100 94 MITREs 6 Malwares 100 IOCs 3 Tools

    [Gamaredon Group](https://attack.mitre.org/groups/G0047) is a suspected Russian cyber espionage group that has targeted military, law enforcement, judiciary, non-profit, and non-governmental organizations in Ukraine since at least 2013. The name…

    First seen 01/01/1970 · Last seen 16/11/5138 ·
  • FIN13 Elephant Beetle
    The MITRE Corporation Confidence 100 53 MITREs 4 Tools

    [FIN13](https://attack.mitre.org/groups/G1016) is a financially motivated cyber threat group that has targeted the financial, retail, and hospitality industries in Mexico and Latin America, as early as 2016. [FIN13](https://attack.mitre.org/groups/G1016) achieves…

    First seen 01/01/1970 · Last seen 16/11/5138 ·
  • Void Manticore COBALT MYSTIQUEHandala Hack
    AlienVault Confidence 100 1 CVE 82 MITREs 2 Malwares 10 IOCs 1 Campaign

    [VOID MANTICORE](https://attack.mitre.org/groups/G1055) is a threat group assessed to operate on behalf of Iran’s Ministry of Intelligence and Security (MOIS).(Citation: Check Point VOID MANTICORE Handala Hack March 2026) Active…

    First seen 01/01/1970 · Last seen 16/11/5138 ·
  • Threat Group-1314 TG-1314
    The MITRE Corporation Confidence 100 4 MITREs 2 Tools

    [Threat Group-1314](https://attack.mitre.org/groups/G0028) is an unattributed threat group that has used compromised credentials to log into a victim's remote access infrastructure. (Citation: Dell TG-1314)

    First seen 01/01/1970 · Last seen 16/11/5138 ·
  • MirrorFace
    AlienVault Confidence 100 1 CVE 77 MITREs 12 Malwares 16 IOCs 8 Tools 1 Campaign

    [MirrorFace](https://attack.mitre.org/groups/G1054) is a People's Republic of China (PRC)-aligned cyberespionage actor believed to be a subgroup under the [menuPass](https://attack.mitre.org/groups/G0045) umbrella based on targeting, tools, and infrastructure overlaps. [MirrorFace](https://attack.mitre.org/groups/G1054) has…

    First seen 01/01/1970 · Last seen 16/11/5138 ·
  • MuddyWater Earth VetalaStatic Kitten
    The MITRE Corporation Confidence 100 18 CVEs 105 MITREs 69 Malwares 100 IOCs 5 Tools

    [MuddyWater](https://attack.mitre.org/groups/G0069) is a cyber espionage group assessed to be a subordinate element within Iran's Ministry of Intelligence and Security (MOIS).(Citation: CYBERCOM Iranian Intel Cyber January 2022) Since at…

    First seen 01/01/1970 · Last seen 16/11/5138 ·