SYMBOLCOMMON_NAMEaka. SYNONYMS

TEMPER PANDA  (Back to overview)

aka: Admin338, G0018, MAGNESIUM, Team338, admin@338

China-based cyber threat group. It has previously used newsworthy events as lures to deliver malware and has primarily targeted organizations involved in financial, economic, and trade policy, typically using publicly available RATs such as PoisonIvy, as well as some non-public backdoors. This threat actor targets prodemocratic activists and organizations in Hong Kong, European and international financial institutions, and a U.S.-based think tank.


Associated Families

There are currently no families associated with this actor.


References
2019-01-01Council on Foreign RelationsCyber Operations Tracker
admin@338
TEMPER PANDA
2019-01-01MITREMITRE ATT&CK
Group description: admin@338
TEMPER PANDA
2015-12-01FireEyeFireEye Threat Intelligence
China-based Cyber Threat Group Uses Dropbox for Malware Communications and Targets Hong Kong Media Outlets
BUBBLEWRAP LOWBALL TEMPER PANDA
2013-10-31FireEyeNed Moran, Thoufique Haq
Know Your Enemy: Tracking A Rapidly Evolving APT Actor
Bozok Poison Ivy TEMPER PANDA

Credits: MISP Project