APT
ATLAS
Atlas
Actors
Sectors
Requirements
⌘K
▸
sign in
Atlas
Actors
Sectors
Requirements
LOADING
Tonto Team (aka Tonto Team, Earth Akhlut) · APT Atlas
Actors
/
Nation-state / APT
/
Asia
Tonto Team
APT
CN · China
AKA
Earth Akhlut · CactusPete · HeartBeat
CrowdStrike
:
KARMA PANDA
Secureworks
:
BRONZE HUNTLEY
Targets
10
Sectors
6
Threat types
1
GIRs covered
0/480
Active since
2009
Pin to atlas
Watch
Share
Export
Victimology
Geographic footprint · 10 countries
Region filter
Export
origin · China
targeted countries · 10
ASIA ·
5
China
·
Japan
·
South Korea
·
Mongolia
·
Türkiye
EUROPE ·
4
Germany
·
Italy
·
Russia
·
Ukraine
AMERICAS ·
1
Peru
Sectors targeted
6 of 40
Government
83 actors
Defense
60 actors
Aerospace
49 actors
Manufacturing (man)
40 actors
Private Sector (generic)
28 actors
Dissidents (as targets)
14 actors
Tactics, techniques, procedures
Threat types + MITRE ATT&CK mapping
THREAT TYPES
ESP · Espionage
MITRE ATT&CK · 10 techniques
Initial Access
· 1
T1566.001
Spearphishing Attachment
Execution
· 3
T1059.001
PowerShell
T1059.006
Python
T1203
Exploitation for Client Execution
Privilege Escalation
· 1
T1068
Exploitation for Privilege Escalation
Credential Access
· 1
T1003
OS Credential Dumping
Discovery
· 2
T1069.001
Local Groups
T1135
Network Share Discovery
Lateral Movement
· 1
T1210
Exploitation of Remote Services
Command And Control
· 1
T1105
Ingress Tool Transfer
GIR coverage
0 / 480 requirements satisfied
Open matrix
No GIRs mapped yet for this actor.
Related actors
By origin and actor type
APT2
nation-state
China · 6 targets · since 2010
APT5
nation-state
China · 15 targets · since 2007
APT8
nation-state
China · 5 targets · since —
APT14
nation-state
China · 15 targets · since —
APT17
nation-state
China · 10 targets · since 2009
APT20
nation-state
China · 14 targets · since 2011