Emissary Panda

China

Details

EMISSARY PANDA is a China-nexus adversary active since at least 2013. This adversary historically leveraged strategic web compromises (SWCs), as well as spear phishing campaigns, to infect targets. EMISSARY PANDA has been known to use custom tools including Clambling, HyperBro, SysUpdate, and the more widely used remote access tool (RAT) PlugX, as well as a number of post-exploitation tools in ope...

Community Identifiers

cWi6DGbaIM1EL9n

Objective

  • obyiM1RAG63dU59Cr4utInzLH8KB
  • Qkw73NcrC6Iya0VDbiPT2fn

Motivation

  • olWzRdcrC6fJ47T

Contact our team about
IOCs for this adversary

?

During a cybersecurity incident, indicators of compromise (IoC) are clues and evidence of a data breach.

Unlock the adversary universe

Thank you for your request!

A member of our team will be in touch shortly.

CrowdStrike logo