APT
ATLAS
Atlas
Actors
Sectors
Requirements
⌘K
▸
sign in
Atlas
Actors
Sectors
Requirements
LOADING
APT31 (aka Zirconium, Red keres) · APT Atlas
Actors
/
Nation-state / APT
/
Asia
APT31
APT
CN · China
AKA
Zirconium · Red keres
CrowdStrike
:
JUDGMENT PANDA
Microsoft
:
Violet Typhoon
Secureworks
:
BRONZE VINEWOOD
Targets
6
Sectors
10
Threat types
1
GIRs covered
0/480
Active since
2013
Pin to atlas
Watch
Share
Export
Victimology
Geographic footprint · 6 countries
Region filter
Export
origin · China
targeted countries · 6
AMERICAS ·
3
Brazil
·
Canada
·
United States
ASIA ·
2
Myanmar
·
Mongolia
EUROPE ·
1
Sweden
Sectors targeted
10 of 40
Government
83 actors
Defense
60 actors
Financial Services
61 actors
Technology
51 actors
Telecom
57 actors
Energy / Utilities
49 actors
Oil and Gas
19 actors
Education & Research
50 actors
Manufacturing (man)
40 actors
Legal & Professional
13 actors
Tactics, techniques, procedures
Threat types + MITRE ATT&CK mapping
THREAT TYPES
ESP · Espionage
MITRE ATT&CK · 24 techniques
Reconnaissance
· 1
T1598
Phishing for Information
Resource Development
· 1
T1583.006
Web Services
Initial Access
· 1
Execution
· 3
T1059.003
Windows Command Shell
T1059.006
Python
Persistence
· 1
Privilege Escalation
· 1
T1068
Exploitation for Privilege Escalation
Credential Access
· 1
T1555.003
Credentials from Web Browsers
Discovery
· 4
T1012
Query Registry
T1016
System Network Configuration Discovery
Exfiltration
· 2
T1041
Exfiltration Over C2 Channel
T1567.002
Exfiltration to Cloud Storage
Command And Control
· 4
T1090.003
Multi-hop Proxy
Stealth
· 5
T1027.002
Software Packing
T1036
Masquerading
T1036.004
Masquerade Task or Service
GIR coverage
0 / 480 requirements satisfied
Open matrix
No GIRs mapped yet for this actor.
Related actors
By origin and actor type
APT2
nation-state
China · 6 targets · since 2010
APT5
nation-state
China · 15 targets · since 2007
APT8
nation-state
China · 5 targets · since —
APT14
nation-state
China · 15 targets · since —
APT17
nation-state
China · 10 targets · since 2009
APT20
nation-state
China · 14 targets · since 2011
T1566.002
Spearphishing Link
T1204.001
Malicious Link
T1547.001
Registry Run Keys / Startup Folder
T1033
System Owner/User Discovery
T1124
System Time Discovery
T1102.002
Bidirectional Communication
T1105
Ingress Tool Transfer
T1665
Hide Infrastructure
T1140
Deobfuscate/Decode Files or Information
T1218.007
Msiexec