Group: Ke3chang

From enterprise
Jump to: navigation, search
Ke3chang
Group
ID G0004
Aliases Ke3chang

Ke3chang is a threat group attributed to actors operating out of China.1

Alias Descriptions

  • Ke3chang - 1

Techniques Used

  • Account Discovery - Ke3chang performs account discovery using commands such as net localgroup administrators and net group "REDACTED" /domain on specific permissions groups.1

Software