🇨🇳

TA-ShadowCricket

APT Group

Also Known As 2 names

Larva-24013 Operation Shadow Force

Target Countries

No target country recorded

Sectors Targeted

No targeted sector recorded

Details

Origin 🇨🇳 CN

Last Updated 02 Sep 2025

MITRE ATT&CK 19

T1003 - OS Credential Dumping T1016 - System Network Configuration Discovery T1021.001 - Remote Services Remote Desktop Protocol T1027 - Obfuscated Files or Information T1036 - Masquerading T1053 - Scheduled Task Job T1055 - Process Injection T1056 - Input Capture T1071.004 - Application Layer Protocol DNS T1078 - Valid Accounts T1082 - System Information Discovery T1105 - Ingress Tool Transfer T1133 - External Remote Services T1190 - Exploit PublicFacing Application T1207 - Rogue Domain Controller T1505.001 - Server Software Component SQL Stored Procedures T1543 - Create or Modify System Process T1562.001 - Impair Defenses Disable or Modify Tools T1572 - Protocol Tunneling

Related Zero-Days

No zero-day CVE linked to this actor