| SYMBOL | COMMON_NAME | aka. SYNONYMS |
Kaspersky described Naikon in a 2015 report as: 'The Naikon group is mostly active in countries such as the Philippines, Malaysia, Cambodia, Indonesia, Vietnam, Myanmar, Singapore, and Nepal, hitting a variety of targets in a very opportunistic way.'
| 2023-09-25
⋅
cocomelonc
⋅
Malware development trick - part 36: Enumerate process modules. Simple C++ example. 4h_rat Aria-body |
| 2022-08-04
⋅
Mandiant
⋅
Advanced Persistent Threats (APTs) APT1 APT10 APT12 APT14 APT15 APT16 APT17 APT18 APT19 APT2 APT20 APT21 APT22 APT23 APT24 APT27 APT3 APT30 APT31 APT4 APT40 APT5 APT9 Naikon |
| 2022-05-04
⋅
Cyware
⋅
Chinese Naikon Group Back with New Espionage Attack APT30 Naikon |
| 2022-04-29
⋅
Cluster25
⋅
The LOTUS PANDA Is Awake, Again. Analysis Of Its Last Strike. APT30 Naikon |
| 2021-09-29
⋅
Medium BlueMonkey
⋅
Aria-Body Loader? Is that you? Aria-body |
| 2021-08-03
⋅
Cybereason
⋅
DeadRinger: Exposing Chinese Threat Actors Targeting Major Telcos CHINACHOPPER Cobalt Strike MimiKatz Nebulae |
| 2021-05-06
⋅
Twitter (@SyscallE)
⋅
Tweet on short analysis of Nebulae Backdoor Nebulae |
| 2021-04-29
⋅
SecurityWeek
⋅
Chinese Cyberspies Target Military Organizations in Asia With New Malware Nebulae |
| 2021-04-28
⋅
Bitdefender
⋅
New Nebulae Backdoor Linked with the NAIKON Group Aria-body Nebulae |
| 2021-04-28
⋅
BleepingComputer
⋅
Cyberspies target military organizations with new Nebulae backdoor Nebulae |
| 2020-09-03
⋅
Kaspersky Labs
⋅
IT threat evolution Q2 2020 PhantomLance Aria-body COMpfun Vicious Panda |
| 2020-05-08
⋅
Kaspersky Labs
⋅
Naikon’s Aria Aria-body |
| 2020-05-07
⋅
Checkpoint
⋅
Naikon APT: Cyber Espionage Reloaded Aria-body |
| 2020-01-01
⋅
Secureworks
⋅
BRONZE GENEVA backspace APT30 Naikon |
| 2019-11-19
⋅
FireEye
⋅
Achievement Unlocked: Chinese Cyber Espionage Evolves to Support Higher Level Missions APT1 APT10 APT2 APT26 APT3 APT30 APT41 Naikon Tonto Team |
| 2019-01-01
⋅
MITRE
⋅
Group description: Naikon APT30 Naikon |
| 2017-08-24
⋅
Kaspersky Labs
⋅
Naikon Targeted Attacks APT30 Naikon |
| 2015-05-29
⋅
Kaspersky Labs
⋅
THE MsnMM CAMPAIGNS: The Earliest Naikon APT Campaigns APT30 Naikon |
| 2015-05-14
⋅
Kaspersky Labs
⋅
The Naikon APT Naikon SslMM Sys10 WinMM xsPlus APT30 Naikon |
| 2015-05-01
⋅
Kaspersky Labs
⋅
The MsnMM Campaigns - The Earliest Naikon APTCampaigns SslMM Sys10 WinMM xsPlus |
| 2015-04-01
⋅
FireEye
⋅
APT30 AND THE MECHANICS OF A LONG-RUNNING CYBER ESPIONAGE OPERATION BACKBEND backspace CREAMSICLE FLASHFLOOD GEMCUTTER MILKMAID Naikon NETEAGLE ORANGEADE SHIPSHAPE SPACESHIP SslMM Sys10 WinMM xsPlus APT30 |
| 2015-02-06
⋅
CrowdStrike
⋅
CrowdStrike Global Threat Intel Report 2014 BlackPOS CryptoLocker Derusbi Elise Enfal EvilGrab Gameover P2P HttpBrowser Medusa Mirage Naikon NetTraveler pirpi PlugX Poison Ivy Sakula RAT Sinowal sykipot taidoor |
| 2015-01-01
⋅
ThreatConnect
⋅
Naikon Tag in ThreatConnect Blogs APT30 Naikon |
| 2014-03-25
⋅
FireEye
⋅
Spear Phishing the News Cycle: APT Actors Leverage Interest in the Disappearance of Malaysian Flight MH 370 APT30 Naikon |
| 2013-02-27
⋅
Trend Micro
⋅
BKDR_RARSTONE: New RAT to Watch Out For PlugX Naikon |