APT
ATLAS
Atlas
Actors
Sectors
Requirements
⌘K
▸
sign in
Atlas
Actors
Sectors
Requirements
LOADING
Tick (aka Tick, Nian) · APT Atlas
Actors
/
Nation-state / APT
/
Asia
Tick
APT
CN · China
AKA
Nian · REDBALDKNIGHT
CrowdStrike
:
STALKER PANDA
Secureworks
:
BRONZE BUTLER
Targets
4
Sectors
6
Threat types
1
GIRs covered
0/480
Active since
2008
Pin to atlas
Watch
Share
Export
Victimology
Geographic footprint · 4 countries
Region filter
Export
origin · China
targeted countries · 4
ASIA ·
3
Hong Kong
·
Japan
·
Taiwan
AMERICAS ·
1
United States
Sectors targeted
6 of 40
Government
83 actors
Aerospace
49 actors
Aviation
19 actors
Media & Journalism
41 actors
Industrials / Engineering
23 actors
Private Sector (generic)
28 actors
Tactics, techniques, procedures
Threat types + MITRE ATT&CK mapping
THREAT TYPES
ESP · Espionage
MITRE ATT&CK · 32 techniques
Initial Access
· 2
T1189
Drive-by Compromise
T1566.001
Spearphishing Attachment
Execution
· 7
T1053.002
At
Persistence
· 1
Credential Access
· 1
T1003.001
LSASS Memory
Discovery
· 5
T1007
System Service Discovery
T1018
Remote System Discovery
Lateral Movement
· 2
T1080
Taint Shared Content
Collection
· 4
T1005
Data from Local System
T1039
Data from Network Shared Drive
T1113
Screen Capture
Command And Control
· 3
T1071.001
Web Protocols
T1102.001
Dead Drop Resolver
Defense Impairment
· 1
T1685
Disable or Modify Tools
Stealth
· 6
T1027.003
Steganography
T1036
Masquerading
GIR coverage
0 / 480 requirements satisfied
Open matrix
No GIRs mapped yet for this actor.
Related actors
By origin and actor type
APT2
nation-state
China · 6 targets · since 2010
APT5
nation-state
China · 15 targets · since 2007
APT8
nation-state
China · 5 targets · since —
APT14
nation-state
China · 15 targets · since —
APT17
nation-state
China · 10 targets · since 2009
APT20
nation-state
China · 14 targets · since 2011
T1053.005
Scheduled Task
T1059.001
PowerShell
T1059.003
Windows Command Shell
T1059.005
Visual Basic
T1059.006
Python
T1203
Exploitation for Client Execution
T1547.001
Registry Run Keys / Startup Folder
T1083
File and Directory Discovery
T1124
System Time Discovery
T1518
Software Discovery
T1550.003
Pass the Ticket
T1560.001
Archive via Utility
T1105
Ingress Tool Transfer
T1036.002
Right-to-Left Override
T1036.005
Match Legitimate Resource Name or Location
T1070.004
File Deletion
T1140
Deobfuscate/Decode Files or Information