ioc[.]one - OSINT Cyber Threat Intelligence Database

202308161700_China-Based Threat Actor Profiles_TLPCLEAR

Show in Graph

Common Information

Type	Value
UUID	a63aa4a4-2a0f-4d17-be6a-2b9f3e7767bd
Fingerprint	dac13c59007360da748e72d149f2a7f84cd47127b48658695b98db7da38a94f9
Analysis status	DONE
Considered CTI value	2
Text language
Published	Aug. 16, 2023, 1:28 p.m.
Added to db	July 4, 2024, 3:50 p.m.
Last updated	Aug. 31, 2024, 8:59 a.m.
Headline	202308161700_China-Based Threat Actor Profiles_TLPCLEAR
Title	202308161700_China-Based Threat Actor Profiles_TLPCLEAR
Detected Hints/Tags/Attributes	206/3/68

Source URLs

	Redirection	Url
Details	Source	https://www.hhs.gov/sites/default/files/china-based-threat-actor-profiles-tlpclear.pdf

URL Provider

Details	Provider	Source level domain
Details	hhs.gov	www.hhs.gov

Attributes

Details	Type	#Events	Value
Details	Domain	41	www.hhs.gov
Details	Domain	2	fofa.su
Details	Domain	14	www.hipaajournal.com
Details	Domain	435	www.hivepro.com
Details	Domain	434	medium.com
Details	Domain	17	www.nbcnews.com
Details	Domain	12	www.lookout.com
Details	Domain	251	www.bleepingcomputer.com
Details	Domain	182	www.mandiant.com
Details	Domain	172	www.crowdstrike.com
Details	Domain	26	www.technologyreview.com
Details	Domain	45	www.bankinfosecurity.com
Details	Domain	36	media.defense.gov
Details	Domain	469	www.cisa.gov
Details	Domain	1	experience.trellix.com
Details	Domain	98	www.secureworks.com
Details	Domain	10	www.jstor.org
Details	Domain	18	www.uscc.gov
Details	Domain	10	www.atlanticcouncil.org
Details	Domain	5	www.boozallen.com
Details	Domain	11	carnegieendowment.org
Details	Domain	145	threatpost.com
Details	Domain	224	unit42.paloaltonetworks.com
Details	Domain	19	www.bugcrowd.com
Details	Domain	101	www.group-ib.com
Details	Domain	99	therecord.media
Details	Domain	23	hhs.gov
Details	Email	18	hc3@hhs.gov
Details	File	1	sponsored_cyber_ttps.pdf
Details	File	23	www.js
Details	File	1	26461991.pdf
Details	File	1	chinas-cyberattack-strategy-explained.html
Details	File	1	chapter_3_section_2--chinas_cyber_capabilities.pdf
Details	Threat Actor Identifier - APT	522	APT41
Details	Threat Actor Identifier - APT	278	APT10
Details	Threat Actor Identifier - APT	22	APT18
Details	Threat Actor Identifier - APT	11	APT22
Details	Threat Actor Identifier - APT	297	APT27
Details	Threat Actor Identifier by SecureWorks	8	TG-0416
Details	Threat Actor Identifier by SecureWorks	25	TG-3390
Details	Url	1	https://www.hipaajournal.com/chinese-apt-group-
Details	Url	1	https://www.hivepro.com/apt27-group-uses-the-
Details	Url	252	https://medium.com
Details	Url	1	https://www.nbcnews.com/tech/security/chinese-hackers-covid-fraud-millions-rcna59636
Details	Url	1	https://www.darkreading.com/vulnerabilities-threats/apt41-taps-google-red-teaming-tool-targeted-info-
Details	Url	3	https://www.lookout.com/threat-intelligence/article/wyrmspy-dragonegg-surveillanceware-apt41
Details	Url	1	https://www.bleepingcomputer.com/news/security/apt41-hackers-target-android-users-with-wyrmspy-
Details	Url	1	https://www.mandiant.com/resources/blog/apt10-menupass-group
Details	Url	2	https://www.crowdstrike.com/blog/two-birds-one-stone-panda
Details	Url	1	https://www.technologyreview.com/2018/12/20/239760/chinese-hackers-allegedly-stole-data-of-more-
Details	Url	1	https://www.bankinfosecurity.com/whitepapers/beyond-compliance-cyber-threats-healthcare-w-5570
Details	Url	1	https://media.defense.gov/2021/jul/19/2002805003/-1/-1/0/csa_chinese_state-
Details	Url	1	https://www.cisa.gov/topics/cyber-threats-and-advisories/advanced-persistent-threats/china
Details	Url	1	https://experience.trellix.com/noelhollistx/home/beyond-compliance-cyber-threats-and-healthcare
Details	Url	1	https://www.bankinfosecurity.com/chinese-apt-groups-target-cancer-research-facilities-report-a-12952
Details	Url	1	https://www.secureworks.com/research/threat-profiles/bronze-olive
Details	Url	1	https://www.jstor.org/stable/pdf/26461991.pdf
Details	Url	1	https://www.uscc.gov/hearings/chinas-cyber-capabilities-warfare-espionage-and-implications-united-
Details	Url	1	https://www.atlanticcouncil.org/content-series/the-5x5/the-5x5-chinas-cyber-operations
Details	Url	1	https://www.boozallen.com/insights/cyber/chinas-cyberattack-strategy-explained.html
Details	Url	1	https://www.uscc.gov/sites/default/files/2022-11/chapter_3_section_2--chinas_cyber_capabilities.pdf
Details	Url	1	https://carnegieendowment.org/2019/04/01/what-are-china-s-cyber-capabilities-and-intentions-pub-
Details	Url	1	https://threatpost.com/apt-gang-branches-out-to-medical-espionage-in-community-health-
Details	Url	1	https://unit42.paloaltonetworks.com/unit42-new-wekby-attacks-use-dns-requests-as-command-and-
Details	Url	1	https://www.bugcrowd.com/glossary/apt18
Details	Url	1	https://www.group-ib.com/blog/apt41-world-tour-2021
Details	Url	1	https://therecord.media/operation-cuckoobees-apt41-cybereason-winnti-group
Details	Url	1	https://www.mandiant.com/resources/blog/apt41-dual-espionage-and-cyber-crime-operation