🇨🇳
Earth Minotaur
APT Group
Information theft and espionage
1 zero-day CVE
ETDA ✓
Also Known As
No alias recordedTarget Countries
No target country recorded
Sectors Targeted
Tibetan and Uyghur activists as well as those who are interested in their causes
Public Administration
92
Computer Systems Design and Related Services
54151
Computer Systems Design Services
541512
Data Processing, Hosting, and Related Services
51821
Data Processing, Hosting, and Related Services
518
Details
Origin
🇨🇳 CN
Last Updated
05 Jan 2026
Malware Families 3
sorgu
poisoncarp
actionspy
MITRE ATT&CK 28
T1005 - Data from Local System
T1033 - System Owner/User Discovery
T1036 - Masquerading
T1049 - System Network Connections Discovery
T1056.001 - Keylogging
T1057 - Process Discovery
T1059 - Command and Scripting Interpreter
T1059.004 - Unix Shell
T1071 - Application Layer Protocol
T1083 - File and Directory Discovery
T1113 - Screen Capture
T1115 - Clipboard Data
T1123 - Audio Capture
T1125 - Video Capture
T1140 - Deobfuscate/Decode Files or Information
T1189 - Drive-by Compromise
T1190 - Exploit Public-Facing Application
T1203 - Exploitation for Client Execution
T1204 - User Execution
T1204.001 - Malicious Link
T1518 - Software Discovery
T1539 - Steal Web Session Cookie
T1552.001 - Credentials In Files
T1555 - Credentials from Password Stores
T1566 - Phishing
T1573 - Encrypted Channel
T1574 - Hijack Execution Flow
T1595 - Active Scanning