Statements (30)
Predicate | Object |
---|---|
gptkbp:instanceOf |
cyber espionage operation
|
gptkbp:activePeriod |
2016-2019
|
gptkbp:countryOfOrigin |
gptkb:China
|
gptkbp:discoveredBy |
gptkb:NCSS
gptkb:Fox-IT |
gptkbp:enemyOf |
cybercrime
data exfiltration |
gptkbp:exploits |
VPN vulnerabilities
remote desktop vulnerabilities web server vulnerabilities |
https://www.w3.org/2000/01/rdf-schema#label |
Operation Wocao
|
gptkbp:notableFor |
stealth techniques
targeting multiple continents use of legitimate credentials |
gptkbp:perpetrator |
gptkb:Twisted_Spider
gptkb:APT20 |
gptkbp:publicDisclosure |
December 2019
|
gptkbp:target |
gptkb:energy
gptkb:technology universities healthcare sector government organizations managed service providers telecommunications sector aviation sector |
gptkbp:usesMalware |
gptkb:Cobalt_Strike
custom backdoors web shells |
gptkbp:bfsParent |
gptkb:FireEye
|
gptkbp:bfsLayer |
6
|