Group: APT18, Threat Group-0416, ...

From ATT&CK
Jump to: navigation, search
APT18, Threat Group-0416, ...
Group
ID G0026
Aliases APT18, Threat Group-0416, TG-0416, Dynamite Panda

APT18 is a threat group that has operated since at least 2009 and has targeted a range of industries, including technology, manufacturing, human rights groups, government, and medical.1

Alias Descriptions

  • Threat Group-0416 - 2
  • TG-0416 - 2
  • Dynamite Panda - 2

Techniques Used

  • Scheduled Task - APT18 actors used the native at Windows task scheduler tool to use scheduled tasks for execution on a victim network.1
  • File Deletion - APT18 actors deleted tools and batch files from victim systems.1

Software