Search for adversaries

Emissary Panda

China

Details

EMISSARY PANDA is a China-nexus adversary active since at least 2013. This adversary historically leveraged strategic web compromises (SWCs), as well as spear phishing campaigns, to infect targets. EMISSARY PANDA has been known to use custom tools including Clambling, HyperBro, SysUpdate, and the more widely used remote access tool (RAT) PlugX, as well as a number of post-exploitation tools in ope...

Community Identifiers

tuW1D4A9f3nKVQN

Objective

  • YtdoRx7I9S2QvkwWXGUselNJuqpA
  • 2TAYh4HfwbxMIZz8jXly1mu

Motivation

  • 3jkiK25GTfsrl9c

Contact our team about
IOCs for this adversary

?

During a cybersecurity incident, indicators of compromise (IoC) are clues and evidence of a data breach.

Unlock the adversary universe

Thank you for your request!

A member of our team will be in touch shortly.

CrowdStrike logo