China-based cyber threat group. It has previously used newsworthy events as lures to deliver malware and has primarily targeted organizations involved in financial, economic, and trade policy, typically using publicly available RATs such as PoisonIvy, as well as some non-public backdoors. This threat actor targets prodemocratic activists and organizations in Hong Kong, European and international financial institutions, and a U.S.-based think tank.
There are currently no families associated with this actor.
|2019 ⋅ MITRE ⋅ |
Group description: admin@338
|2019 ⋅ Council on Foreign Relations ⋅ |
|2015-12-01 ⋅ FireEye ⋅ |
China-based Cyber Threat Group Uses Dropbox for Malware Communications and Targets Hong Kong Media Outlets
BUBBLEWRAP LOWBALL TEMPER PANDA
|2013-10-31 ⋅ FireEye ⋅ |
Know Your Enemy: Tracking A Rapidly Evolving APT Actor
Bozok Poison Ivy TEMPER PANDA