🇨🇳
UNC5337
APT Group
5 zero-day CVEs
Also Known As
No alias recordedTarget Countries 2
Countries highlighted in red
United Kingdom
United States
Sectors Targeted
Utilities
22
Computer Systems Design Services
541512
Commercial Banking
52211
Health Care and Social Assistance
62
Finance and Insurance
52
Computer Systems Design and Related Services
54151
National Security and International Affairs
928
Educational Services
61
National Security and International Affairs
928110
Information
51
Space Research and Technology
927
Details
Origin
🇨🇳 CN
Last Updated
09 May 2025
MITRE ATT&CK 35
T1003 - OS Credential Dumping
T1018 - Remote System Discovery
T1020 - Automated Exfiltration
T1021 - Remote Services
T1021.001 - Remote Desktop Protocol
T1021.002 - SMB/Windows Admin Shares
T1046 - Network Service Scanning
T1053.005 - Scheduled Task
T1055 - Process Injection
T1055.012 - Process Hollowing
T1059 - Command and Scripting Interpreter
T1059.003
T1059.004 - Unix Shell
T1070 - Indicator Removal on Host
T1070.001 - Clear Windows Event Logs
T1070.002 - Clear Linux or Mac System Logs
T1070.003 - Clear Command History
T1070.004 - File Deletion
T1078.002
T1090 - Proxy
T1140 - Deobfuscate/Decode Files or Information
T1190 - Exploit Public-Facing Application
T1485 - Data Destruction
T1486
T1505 - Server Software Component
T1505.003 - Web Shell
T1543.003 - Windows Service
T1556 - Modify Authentication Process
T1562 - Impair Defenses
T1562.001 - Disable or Modify Tools
T1566.001
T1571 - Non-Standard Port
T1572 - Protocol Tunneling
T1595 - Active Scanning
T1595.002 - Vulnerability Scanning