APT12

GPTKB entity

Statements (31)
Predicate Object
gptkbp:instanceOf cybercrime
gptkbp:activity cybercrime
gptkbp:alsoKnownAs gptkb:IXESHE
gptkb:Numbered_Panda
gptkbp:associatedWith gptkb:Chinese_PLA
gptkbp:category Advanced Persistent Threat
gptkbp:countryOfOrigin gptkb:China
gptkbp:firstReported 2009
https://www.w3.org/2000/01/rdf-schema#label APT12
gptkbp:notableBattle attacks on Japanese organizations
attacks on Southeast Asian targets
attacks on The New York Times
gptkbp:reportsTo gptkb:FireEye
gptkb:Mandiant
gptkb:Symantec
gptkbp:status active
gptkbp:suspect gptkb:Chinese_government
gptkbp:target gptkb:government_agency
gptkb:NGOs
aerospace industry
media organizations
defense contractors
gptkbp:TTPs spear phishing
watering hole attacks
custom malware deployment
gptkbp:usesMalware gptkb:Etumbot
gptkb:IXESHE_malware
RAT (Remote Access Trojan)
gptkbp:bfsParent gptkb:Operation_Winnti
gptkb:Hacker
gptkbp:bfsLayer 7