APT
ATLAS
Atlas
Actors
Sectors
Requirements
⌘K
▸
sign in
Atlas
Actors
Sectors
Requirements
LOADING
APT10 (aka Red Apollo, menuPass) · APT Atlas
Actors
/
Nation-state / APT
/
Asia
APT10
APT
CN · China
AKA
Red Apollo · menuPass · Granite Typhoon · HOGFISH · Cloud Hopper · CVNX · ATK41 · ITG01
Microsoft
:
POTASSIUM
CrowdStrike
:
STONE PANDA
Secureworks
:
BRONZE RIVERSIDE
Targets
19
Sectors
14
Threat types
1
GIRs covered
0/480
Active since
2009
Pin to atlas
Watch
Share
Export
Victimology
Geographic footprint · 19 countries
Region filter
Export
origin · China
targeted countries · 19
ASIA ·
4
United Arab Emirates
·
India
·
Japan
·
Malaysia
OCEANIA ·
1
Australia
AMERICAS ·
3
Brazil
·
Canada
·
United States
EUROPE ·
9
Switzerland
·
Germany
·
Denmark
·
Finland
·
France
·
United Kingdom
·
Italy
·
Netherlands
·
Sweden
AFRICA ·
2
Gabon
·
South Africa
Sectors targeted
14 of 40
Government
83 actors
Aerospace
49 actors
Financial Services
61 actors
Healthcare
38 actors
Pharmaceutical
24 actors
Technology
51 actors
Telecom
57 actors
NGOs & Dissidents
47 actors
Energy / Utilities
49 actors
Oil and Gas
19 actors
Manufacturing (man)
40 actors
Consulting / Professional Services
26 actors
Private Sector (generic)
28 actors
Extractive Industries
8 actors
Tactics, techniques, procedures
Threat types + MITRE ATT&CK mapping
THREAT TYPES
ESP · Espionage
MITRE ATT&CK · 41 techniques
Resource Development
· 1
T1583.004
Server
Initial Access
· 3
T1190
Exploit Public-Facing Application
T1199
Trusted Relationship
T1566.001
Spearphishing Attachment
Execution
· 5
T1047
Windows Management Instrumentation
Credential Access
· 4
T1003.001
LSASS Memory
Discovery
· 6
T1016
System Network Configuration Discovery
Lateral Movement
· 5
T1021.001
Remote Desktop Protocol
T1021.004
SSH
Collection
· 5
T1005
Data from Local System
T1039
Data from Network Shared Drive
T1119
Automated Collection
Exfiltration
· 1
T1041
Exfiltration Over C2 Channel
Command And Control
· 1
T1105
Ingress Tool Transfer
Stealth
· 10
T1027
Obfuscated Files or Information
GIR coverage
0 / 480 requirements satisfied
Open matrix
No GIRs mapped yet for this actor.
Related actors
By origin and actor type
APT2
nation-state
China · 6 targets · since 2010
APT5
nation-state
China · 15 targets · since 2007
APT8
nation-state
China · 5 targets · since —
APT14
nation-state
China · 15 targets · since —
APT17
nation-state
China · 10 targets · since 2009
APT20
nation-state
China · 14 targets · since 2011
T1053.005
Scheduled Task
T1059.001
PowerShell
T1059.003
Windows Command Shell
T1106
Native API
T1003.002
Security Account Manager
T1003.003
NTDS
T1003.004
LSA Secrets
T1018
Remote System Discovery
T1033
System Owner/User Discovery
T1046
Network Service Discovery
T1049
System Network Connections Discovery
T1083
File and Directory Discovery
T1210
Exploitation of Remote Services
T1550.002
Pass the Hash
T1570
Lateral Tool Transfer
T1560
Archive Collected Data
T1560.001
Archive via Utility
T1027.002
Software Packing
T1036
Masquerading
T1036.003
Rename Legitimate Utilities
T1036.005
Match Legitimate Resource Name or Location
T1055.012
Process Hollowing
T1070.004
File Deletion
T1078
Valid Accounts
T1140
Deobfuscate/Decode Files or Information
T1218.004
InstallUtil