IndigoZebra is a Chinese state-sponsored actor mentioned for the first time by Kaspersky in its APT Trends report Q2 2017, targeting, at the time of its discovery, former Soviet Republics with multiple malware strains including Meterpreter, Poison Ivy, xDown, and a previously unknown backdoor called “xCaon.”
There are currently no families associated with this actor.
Rewterz Information Security
Rewterz Threat Intel – IndigoZebra APT Group Targeting Central Asia – Active IOCs
IndigoZebra APT continues to attack Central Asia with evolving tools
BoxCaon xCaon IndigoZebra
APT Trends report Q2 2017