APT
ATLAS
Atlas
Actors
Sectors
Requirements
⌘K
▸
sign in
Atlas
Actors
Sectors
Requirements
LOADING
APT40 (aka Temp.Jumper, Gingham Typhoon) · APT Atlas
Actors
/
Nation-state / APT
/
Asia
APT40
APT
CN · China
AKA
Temp.Jumper · Gingham Typhoon · Temp.Periscope · Mudcarp · ITG09 · ISLANDDREAMS · Leviathan · Feverdream
Microsoft
:
GADOLINIUM
CrowdStrike
:
KRYPTONITE PANDA
Secureworks
:
BRONZE MOHAWK
Targets
17
Sectors
15
Threat types
1
GIRs covered
0/480
Active since
2013
Pin to atlas
Watch
Share
Export
Victimology
Geographic footprint · 17 countries
Region filter
Export
origin · China
targeted countries · 17
EUROPE ·
6
Austria
·
Belgium
·
Switzerland
·
Germany
·
United Kingdom
·
Norway
OCEANIA ·
1
Australia
ASIA ·
9
Hong Kong
·
Indonesia
·
India
·
Cambodia
·
Myanmar
·
Malaysia
·
Philippines
·
Saudi Arabia
·
Taiwan
AMERICAS ·
1
United States
Sectors targeted
15 of 40
Government
83 actors
Defense
60 actors
Aviation
19 actors
Healthcare
38 actors
Pharmaceutical
24 actors
Technology
51 actors
Telecom
57 actors
NGOs & Dissidents
47 actors
Education & Research
50 actors
Transportation
25 actors
Legal & Professional
13 actors
Industrials / Engineering
23 actors
Chemicals
15 actors
Private Sector (generic)
28 actors
Maritime
21 actors
Tactics, techniques, procedures
Threat types + MITRE ATT&CK mapping
THREAT TYPES
ESP · Espionage
MITRE ATT&CK · 30 techniques
Reconnaissance
· 1
T1589.001
Credentials
Initial Access
· 4
T1189
Drive-by Compromise
T1190
Exploit Public-Facing Application
T1566.001
Spearphishing Attachment
T1566.002
Spearphishing Link
Execution
· 5
T1047
Windows Management Instrumentation
Persistence
· 2
Credential Access
· 2
T1003
OS Credential Dumping
Lateral Movement
· 3
T1021.001
Remote Desktop Protocol
T1021.004
SSH
Collection
· 1
T1560
Archive Collected Data
Exfiltration
· 2
T1041
Exfiltration Over C2 Channel
T1567.002
Exfiltration to Cloud Storage
Command And Control
· 3
T1090.003
Multi-hop Proxy
Stealth
· 7
T1027.003
Steganography
GIR coverage
0 / 480 requirements satisfied
Open matrix
No GIRs mapped yet for this actor.
Related actors
By origin and actor type
APT2
nation-state
China · 6 targets · since 2010
APT5
nation-state
China · 15 targets · since 2007
APT8
nation-state
China · 5 targets · since —
APT14
nation-state
China · 15 targets · since —
APT17
nation-state
China · 10 targets · since 2009
APT20
nation-state
China · 14 targets · since 2011
T1059.001
PowerShell
T1059.005
Visual Basic
T1203
Exploitation for Client Execution
T1204.001
Malicious Link
T1547.001
Registry Run Keys / Startup Folder
T1547.009
Shortcut Modification
T1003.001
LSASS Memory
T1534
Internal Spearphishing
T1102.003
One-Way Communication
T1105
Ingress Tool Transfer
T1027.015
Compression
T1055.001
Dynamic-link Library Injection
T1078
Valid Accounts
T1140
Deobfuscate/Decode Files or Information
T1197
BITS Jobs
T1218.010
Regsvr32