EMISSARY PANDA is a China-nexus adversary operating in support of the Ministry of State Security (MSS), active since at least 2013. This adversary historically leveraged strategic web compromises (SWCs), as well as spear phishing campaigns, to infect targets. EMISSARY PANDA has been known to use custom tools including Clambling, HyperBro, SysUpdate, and the more widely used remote access tool (RA...
Contact our team about
IOCs for this adversary