| SYMBOL | COMMON_NAME | aka. SYNONYMS |
BRONZE HIGHLAND has been observed using spearphishing as an initial infection vector to deploy the MgBot remote access trojan against targets in Hong Kong. Third party reporting suggests the threat group also targets India, Malaysia and Taiwan and leverages Cobalt Strike and KsRemote Android Rat. CTU researchers assess with moderate confidence that BRONZE HIGHLAND operates on behalf of China and has a remit covering espionage against domestic human rights and pro-democracy advocates and nations neighbouring China
There are currently no families associated with this actor.
| 2023-04-26
⋅
ESET Research
⋅
Evasive Panda APT group delivers malware via updates for popular Chinese software MgBot BRONZE HIGHLAND |
| 2020-09-30
⋅
Youtube (Virus Bulletin)
⋅
Evasive Panda MgBot BRONZE HIGHLAND |
| 2020-09-30
⋅
Malwarebytes
⋅
Evasive Panda MgBot BRONZE HIGHLAND Evasive Panda |
| 2020-07-21
⋅
Malwarebytes Labs
⋅
Chinese APT group targets India and Hong Kong using new variant of MgBot malware MgBot BRONZE HIGHLAND |