Chinese state actors
· Published 21/12/2025 05:10 · Modified 21/12/2025 05:10
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 05:10
- Modified
- 21/12/2025 05:10
- Updated at
- 21/12/2025 05:10
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 1 reports, 15 attack patterns (mitre), 9 malware, 1 sectors, 103 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (1)
-
15 MITREs 9 Malwares 138 Observables 1 APTPublished 06/06/2024 07:55 · Modified 06/06/2024 08:20
Attack patterns (MITRE) (15)
-
T1036 usesMasquerading
-
T1543 usesCreate or Modify System Process
-
T1059 usesCommand and Scripting Interpreter
-
T1003 usesOS Credential Dumping
-
T1105 usesIngress Tool Transfer
-
T1018 usesRemote System Discovery
-
T1207
-
T1087 usesAccount Discovery
-
T1021 usesRemote Services
-
T1012 usesQuery Registry
-
T1033 usesSystem Owner/User Discovery
-
T1055 usesProcess Injection
-
T1574 usesHijack Execution Flow
-
T1027 usesObfuscated Files or Information
-
T1569 usesSystem Services
Malware (9)
-
PocoProxy usesFamilyPublished 06/06/2024 07:55 · Modified 06/06/2024 07:55
-
Impersoni-Fake-Ator usesFamilyPublished 06/06/2024 07:55 · Modified 06/06/2024 07:55
-
RUDEBIRD usesFamilyPublished 06/06/2024 07:55 · Modified 06/06/2024 07:55
-
PowHeartBeat usesFamilyPublished 06/06/2024 07:55 · Modified 06/06/2024 07:55
-
NUPAKAGE usesFamilyPublished 06/06/2024 07:55 · Modified 06/06/2024 07:55
-
PhantomNet usesFamilyPublished 23/07/2025 15:42 · Modified 23/07/2025 15:42
-
AlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 Published 20/12/2025 19:39 · Modified 27/05/2026 21:40
-
EAGERBEE usesFamilyPublished 06/01/2025 21:27 · Modified 06/01/2025 21:27
-
CCoreDoor usesFamilyPublished 06/06/2024 07:55 · Modified 06/06/2024 07:55
Sectors (1)
- Government targets
Indicators (103)
-
www.googlespeedtest33.comindicates -
e5620b4b6371b786c72e830dc24012354642b7067bd5902da7073ce0421456b7indicates -
8b16a3a3047f0eb93ef2b55613a76a9f5f19506428895a5ffbb3c1c44780aad7indicates -
e65645af3894ec55f0b55472302d288e860a10d97bc19b699facc400f778c4eeindicates -
networkdevice.scindicates -
c1bec59afd3c6071b461bb480ff88ba7e36759a949f4850cc26f0c18e4c811a0indicates -
0e010a36ff24299592569f7c3fc01c597e158996d94b66eb3bbf757742663e76indicates -
101bf8dcdd414f09ba46cdecbd96e8606c79b0e76b6a2ce040395e775cb4da86indicates -
gandeste.netindicates -
173bb620ed2eee6b356e128da88e173eb1b69253ecd616f8f984087688c089fdindicates -
5f3fd50715aabf43cc6edb5f38026a3baa37a7fd7a17ae232fc65e186c83befbindicates -
a1a8adae91daa96deb01326c702fec388d0fa983f299de3f1bdb8a277df64423indicates -
c1d818f18c7160807d9031e024fcc6429476d6455221e3aa988c6245269fbcc8indicates -
f499f8d9584e5f4474b19324b807a38fec1c1d38d5df2ff4c1e16798311bc25bindicates -
https://cloud.keepasses.comindicates -
cloud.gti.mcindicates -
www.hpupdate.netindicates -
cca5ae87cd710a8fbf994addb0abc8bf1deb222214d4831289885de23ca98924indicates -
f830c3771d35237b4a63b946d7a0d187f5aaa4240e965d74070b7d72b6fba210indicates -
cancelle.netindicates -
4ae29b8124f6221dab934ac04afed2acc8b17c6b35120d568bad8658cbca01c6indicates -
4dd0debf03eeb938fbaca1f1fd391523358c23cbf18959a149c29133cc3c9caeindicates -
message.ooguy.comindicates -
2a662b58f1dd229e7dba923a4d123658e3c10c0cfcec03748fbe577db81db34dindicates -
www.msudapis.infoindicates -
e8cd237ac43fa0505d858ac8eb800020eeca104a1cd931d3b6d0ef656ee5393dindicates -
b05b92fd84cc3e3bd6378cadbe9b8b2cb926c42383e6194be1df44d1b9202fc1indicates -
56f0c8047203147d9b9a888ebac8f33b14ae198182a13913a0f93652dfe2052aindicates -
ad346007f28c4b6d409c95f55e750e249db4b168cd7061baa128f826df948e10indicates -
9ccf0e46f6aadbb20f4c269d8ac85cc9b4e6ce56bf226d45eda4347a20785c88indicates -
58a7be39056c2084bbb4aec9843db732dfe115ec4ee0c7cc4cf8884621b5142dindicates -
6d94049b24c6ac2373d3b517515fcaeeb392458342bbb5ad4c4316e124805b5bindicates -
gsenergyspeedtest.comindicates -
cloud.keepasses.comindicates -
951c7f8fdb6cfc8b362615ab1eec4a07dc8fccfd3a7ecda8255908a93b6a1f21indicates -
fa7d4fb4b43e1672c7f4656cd4275c330c2e13aff8451d68e4f305e5e5aea395indicates -
associate.freeonlinelearning.comindicates -
scancenter.trendrealtime.comindicates -
https://www.hpupdate.net/us-en/drivers/printersindicates -
92e2dafb6d91ac7bc725e680d53cfbfcc854033d14f6e4807fd0169c605324d2indicates -
hpupdate.netindicates -
91f40e8659da3dbbb22497b317aa37f26403be86662e359ecddcb4a0c72e154cindicates -
associate.freeonlinelearningtech.comindicates -
test1.zhangliyong.cnindicates -
d86790104f59b89edbdb1478f320d4589155d465d4710bcb57ff015383eefb38indicates -
71ccc2c30dc43f20833c3e54d1fe86f8b68263d876461a3f7f7f8702e92cbe81indicates -
0c3baa012cdb518982ec4ae954b395f3d6b9544ead8e050370219fa584f74f3cindicates -
dcc938af8fb2964a1f35adfb221de76ffc0bd0ccaac91455b3638fd4dc33e8c0indicates -
62c9b97a849f40f4b5b167b96a54fa1ef03624ac8f2972b641af8ca5d00b5db0indicates -
e4b7a1372233aef6d495743bb726fcd5037d4e90e043085498c21587335d36c7indicates -
edd0c859424ab953a92ef20cfc8b938f469253122485915d6de80d314b18b08findicates -
c1abc254d231574044ffe7bdd030be04618916f255396197f1151bfec98c04b6indicates -
dmsz.orgindicates -
55277d86c0707459500dbb16915665ae611d3a4e4597d51599ea8b8fe6f85f29indicates -
430bf24c9a7843895cb266b440c1f911ae600a7e6b8f3885d1c000622da52b2bindicates -
f788d5c2c1bb2d88db09b727b3841155daf43ba81802b5faffec72640451fa4findicates -
e9cb02690d987de8d392d0e24b3ccbb294c751dff73962135913c7ec0d8a8064indicates -
ea8c8f834523886b07d87e85e24f124391d69a738814a0f7c31132b6b712ed65indicates -
7ed44a0e548ba9a3adc1eb4fbf49e773bd9c932f95efc13a092af5bed30d3595indicates -
a70e8317a608dd6ea0ad8564b089a153a7e3ab7ef763899d3d806141e820148eindicates -
f30b04a9ebc95c50fdc116260068d4d8da8005104b6366c29d0f24dbbf798957indicates -
f682323a2c543abbe12c21a77ee93b49444381fa33f76c67363c84764ca4c675indicates -
c679a2453697c51776b8a64d59fb8bf4172906e9a4f91b3872774bd05378d28cindicates -
110c5eec940f3abb8b3a671cd292bc9ef65772168325a7949290e9828353824aindicates -
2892aa48e12e72ba25c4caa9471b41ce316624ff98ed79f56e3c6b3a51026504indicates -
bbc0fe549a9e902528a125abd13b1f7c53746416d9c9bb91f88877f37a4ce11cindicates -
1ad26a31c5387055610e053dbab8355e1371f89dfa37526f7a3341122526b719indicates -
5298c1aadac203285c8a95a4e3f62ec14b984729bf768a405c8028291e34fe1bindicates -
755b14ad83da2f2eff8ef8bf83ed74c6d96f6b3b3fde95d4c13d8cb75d861631indicates -
34294ff52899a63f2dc02e5a8f1488343afdb9702437d409a0869317ccfb4243indicates -
3cc8e21798462468d3bc05ddef35a558fe0dff268c433d42bd01385155084f53indicates -
4995b91badc8f9bf549548a734d3c14fa2a1c21080743484028b5362440808a0indicates -
5f959f480a66a33d37d9a0ef6c8f7d0059625ca2a8ae9236b49b194733622655indicates -
609fc96700f49f7fdfa71248e642a4dfcd8b3d35f6da3b7c2ce7daad25a844a9indicates -
68ee8c2209641a6796e06caa115effcb89f722a5737210b5bebb87a36e5141a8indicates -
fbe0851792629f86b1d5a599a6bc29d82b3248462bebd8e47ee698e4f510308findicates -
75403191ee834075ab5334e92bda8aab267545a03ed5ed3508db36f21f4acf50indicates -
506b21588541243f3ddd5acb759bf20a3bf06fd2fea455066866154bc5e59721indicates -
1622ef497f2b767a43e25bcd9a9a629cbe7bed49cb27dc4f08fe0863730580d9indicates -
44e0c61f70f44e3a35ecde9b49a623973727d3aa68922ef4e1ff8dfc74795582indicates -
b708dd11942c3e87a8987bdf83f7ea603425ae75fc25a306f54f1087df4198b4indicates -
52e248b9fb32ac3aaa4be4b41c66f1e7d9f2d4605aae98f20584f21ea1f33202indicates -
b32de9f4f2a9bd08063c72fa84d5d44be5a3bf7859bfb6ceaf093cd03ff0240findicates -
c6e1bf2b7ac0fd3c34761099d2ec17fccd0604e2e62e94f297943260d15368ceindicates -
299b1e82f6941cc049a16c7854230fb37c97af32e2cf5cb335495f42446dc43findicates -
associate.feedfoodconcerning.infoindicates -
bdcedd81555c9c2eb9f4329626c27ec8c7b91a0f2a9f6e0c55dbcd3f99e82b5dindicates -
776d427a19d8389464f855b2f70e0ac11e896162a9f9b50bcb23f0f0aea5044findicates -
c06065d3de3bfb37168a5d94baf1c675f831a201937ef774a36c2ea2bf6fc49eindicates -
cc19c785702eea660a1dd7cbf9e4fef80b41384e8bd6ce26b7229e0251f24272indicates -
msudapis.infoindicates -
8d54da0f807d771edb1197e463cdff8848651e14745c4c468386c31953c340ffindicates -
4fcbc598c5699ea48a1edd8dda065eab210f09ad900ab167cb5abdf9841dd2b7indicates -
47c4a62fe75aa62906f0b110668e17947e905a33759100de21b987879b47183bindicates -
1b97afb3310b3af944f74c2d715c110cec32ec536c0a9837b8c88df3438b2a63indicates -
01544aeb502163c4fb7bac483430059183ce3d11aee78cd4a6c7074c5289540eindicates -
dnsspeedtest2022.comindicates -
9404f51ccaf4165e6add08344f04b90ae79a045814d6b1de6b6c1e30981faa78indicates -
3a85c36fff48b223f6edd722bc1603a1fd9b00d3e4d46a88151c4b1b696d90d1indicates -
c36173f28bfd99db86533d5fdb0ce4dd565488ca56d4b9df1997ee9201b3b704indicates -
da9a53ff7486cf128e5ba80e66fcf3b1d8993d553bd9634ae8e90cbab31fd8daindicates -
7d6209036d370dbce7a0657f35dedeaa59c15fcfb4d696b9ebdd0fcc773dad50indicates -
a22b8ef40b8abe2bd7161f425484e82207f322fef1d0562de5bf98e2f642b477indicates