APT
ATLAS
Atlas
Actors
Sectors
Requirements
⌘K
▸
sign in
Atlas
Actors
Sectors
Requirements
LOADING
APT18 (aka Wekby) · APT Atlas
Actors
/
Nation-state / APT
/
Asia
APT18
APT
CN · China
AKA
Wekby
CrowdStrike
:
DYNAMITE PANDA
Microsoft
:
SCANDIUM
Secureworks
:
TG-0416
Targets
16
Sectors
9
Threat types
1
GIRs covered
0/480
Active since
2009
Pin to atlas
Watch
Share
Export
Victimology
Geographic footprint · 16 countries
Region filter
Export
origin · China
targeted countries · 16
ASIA ·
4
Bangladesh
·
China
·
Israel
·
India
AMERICAS ·
2
Canada
·
United States
EUROPE ·
10
Switzerland
·
Germany
·
Denmark
·
France
·
United Kingdom
·
Italy
·
Netherlands
·
Norway
·
Romania
·
Sweden
Sectors targeted
9 of 40
Government
83 actors
Defense
60 actors
Aerospace
49 actors
Financial Services
61 actors
Healthcare
38 actors
Pharmaceutical
24 actors
NGOs & Dissidents
47 actors
Chemicals
15 actors
Private Sector (generic)
28 actors
Tactics, techniques, procedures
Threat types + MITRE ATT&CK mapping
THREAT TYPES
ESP · Espionage
MITRE ATT&CK · 9 techniques
Execution
· 2
T1053.002
At
T1059.003
Windows Command Shell
Persistence
· 1
Discovery
· 1
T1083
File and Directory Discovery
Command And Control
· 3
T1071.001
Web Protocols
T1071.004
DNS
Stealth
· 2
T1070.004
File Deletion
T1078
Valid Accounts
GIR coverage
0 / 480 requirements satisfied
Open matrix
No GIRs mapped yet for this actor.
Related actors
By origin and actor type
APT2
nation-state
China · 6 targets · since 2010
APT5
nation-state
China · 15 targets · since 2007
APT8
nation-state
China · 5 targets · since —
APT14
nation-state
China · 15 targets · since —
APT17
nation-state
China · 10 targets · since 2009
APT20
nation-state
China · 14 targets · since 2011
T1547.001
Registry Run Keys / Startup Folder
T1105
Ingress Tool Transfer