SYMBOLCOMMON_NAMEaka. SYNONYMS

Budminer  (Back to overview)

aka: Budminer cyberespionage group

Based on the evidence we have presented Symantec attributed the activity involving theDripion malware to the Budminer advanced threat group. While we have not seen newcampaigns using Taidoor malware since 2014, we believe the Budminer group has changedtactics to avoid detection after being outed publicly in security white papers and blogs over thepast few years.


Associated Families

There are currently no families associated with this actor.


References
2020-01-10ETH ZürichSteafan Soesanto
@techreport{soesanto:20200110:onesided:307972d, author = {Steafan Soesanto}, title = {{A one-sided Affair: Japan and the People's Republic of China in Cyberspace Hotspot Analysis}}, date = {2020-01-10}, institution = {ETH Zürich}, url = {https://www.research-collection.ethz.ch/bitstream/handle/20.500.11850/389371/1/Cyber-Reports-2020-01-A-one-sided-Affair.pdf}, language = {English}, urldate = {2020-01-20} } A one-sided Affair: Japan and the People's Republic of China in Cyberspace Hotspot Analysis
Budminer
2016-03-29SymantecJon DiMaggio
@online{dimaggio:20160329:taiwan:de4b254, author = {Jon DiMaggio}, title = {{Taiwan targeted with new cyberespionage back doorTrojan}}, date = {2016-03-29}, organization = {Symantec}, url = {https://app.box.com/s/xqh458fe1url7mgl072hhd0yxqw3x0jm}, language = {English}, urldate = {2020-01-20} } Taiwan targeted with new cyberespionage back doorTrojan
Budminer
2016-03-29SymantecJon DiMaggio
@online{dimaggio:20160329:taiwan:4b83179, author = {Jon DiMaggio}, title = {{Taiwan targeted with new cyberespionage back door Trojan}}, date = {2016-03-29}, organization = {Symantec}, url = {https://www.symantec.com/connect/blogs/taiwan-targeted-new-cyberespionage-back-door-trojan}, language = {English}, urldate = {2019-12-18} } Taiwan targeted with new cyberespionage back door Trojan
Dripion Budminer

Credits: MISP Project