APT60

URI: https://gptkb.org/entity/APT60

GPTKB entity

Predicate	Object
gptkbp:instanceOf	gptkb:cybercrime
gptkbp:activeYearsStart	at least 2009
gptkbp:alsoKnownAs	gptkb:Red_Apollo gptkb:cathedral
gptkbp:attributedTo	gptkb:Palo_Alto_Networks gptkb:CrowdStrike gptkb:FireEye
gptkbp:countryOfOrigin	gptkb:China
gptkbp:industry	gptkb:military maritime industry research institutions government organizations engineering firms
gptkbp:mainActivity	gptkb:cybercrime
gptkbp:notableOperation	gptkb:Operation_CuckooBees attacks on South China Sea targets
gptkbp:region	gptkb:Europe gptkb:United_States gptkb:Asia-Pacific
gptkbp:suspect	gptkb:Chinese_government
gptkbp:TTPs	custom malware spear phishing watering hole attacks
gptkbp:usesMalware	gptkb:AirBreak gptkb:NanHaiShu gptkb:PhotoMiner gptkb:Pisloader gptkb:SeaDuke gptkb:TidePool BlackCoffee
gptkbp:bfsParent	gptkb:TA-60
gptkbp:bfsLayer	5
https://www.w3.org/2000/01/rdf-schema#label	APT60