🇨🇳

TA413

APT Group Information theft and espionage 6 zero-day CVEs ETDA ✓

Also Known As 3 names

LuckyCat White Dev 9 TA413

Target Countries 18

Countries highlighted in red

Afghanistan Australia Bhutan Belarus Canada China Germany France United Kingdom India Italy Japan Sri Lanka Luxembourg Malaysia Nepal Pakistan United States

Sectors Targeted

Computer Systems Design Services 541512 Computer Systems Design and Related Services 54151 National Security and International Affairs 928 Professional, Scientific, and Technical Services 54

Details

Origin 🇨🇳 CN
Last Updated 01 Jun 2022

MITRE ATT&CK 40

T1003.001 T1010 - Application Window Discovery T1012 - Query Registry T1027 T1040 - Network Sniffing T1041 T1045 - Software Packing T1047 - Windows Management Instrumentation T1055 - Process Injection T1057 - Process Discovery T1059 T1059.001 T1071 - Application Layer Protocol T1071.001 T1082 - System Information Discovery T1083 - File and Directory Discovery T1087 - Account Discovery T1090 T1095 - Non-Application Layer Protocol T1102 T1105 - Ingress Tool Transfer T1119 - Automated Collection T1125 - Video Capture T1129 - Shared Modules T1132 T1140 - Deobfuscate/Decode Files or Information T1158 - Hidden Files and Directories T1176 T1190 T1203 T1497 - Virtualization/Sandbox Evasion T1505 T1518 - Software Discovery T1547 T1566 T1566.001 T1571 - Non-Standard Port T1573 - Encrypted Channel T1595 T1614 - System Location Discovery

Related Zero-Days 6

CVE-2017-0199 CVE-2018-0802 CVE-2021-40444 CVE-2021-44228 CVE-2022-1040 CVE-2022-30190