Wicked Panda

GPTKB entity

Statements (47)
Predicate Object
gptkbp:instanceOf cybercrime
gptkbp:activeYearsStart 2012
gptkbp:alsoKnownAs gptkb:APT41
gptkbp:associatedWith gptkb:Chinese_government
gptkbp:attributionConfidence high
gptkbp:connectsTo gptkb:Chinese_Ministry_of_State_Security
Chinese cybercriminal underground
gptkbp:countryOfOrigin gptkb:China
https://www.w3.org/2000/01/rdf-schema#label Wicked Panda
gptkbp:motive espionage
financial gain
gptkbp:notableEvent 2019 video game supply chain attack
2020 US indictment for global hacking campaign
gptkbp:reportsTo gptkb:US_Department_of_Justice
gptkb:CrowdStrike
gptkb:FireEye
gptkb:Mandiant
gptkbp:target gptkb:video_game
education sector
healthcare sector
government organizations
telecommunications sector
travel sector
gptkbp:technique living off the land
spear phishing
supply chain attacks
watering hole attacks
credential theft
gptkbp:usesMalware gptkb:PlugX
gptkb:ShadowPad
gptkb:Winnti
gptkb:ZxShell
gptkb:Cobalt_Strike
gptkb:Mimikatz
gptkb:Crosswalk
Gh0st RAT
POISONPLUG
BIOPASS
CLOWNDRAGON
DEADPOOL
HIGHNOON
KEYPLUG
PHOTO
PWNLNX
STEADYPULSE
gptkbp:bfsParent gptkb:Operation_Winnti
gptkbp:bfsLayer 7