Overcast Panda

China

Details

OVERCAST PANDA is a China-nexus targeted intrusion adversary likely active since at least 2019. Previously tracked as the ClearVariable activity cluster, this adversary’s tradecraft is primarily characterized by the use of the unique FlowCloud and LookBack malware implants delivered through a variety of means. Identified OVERCAST PANDA operations to date have primarily focused on entities the U.S....

Objective

  • SR9iIxUHOKvY82pnshQJ1By

Motivation

  • MkGRBQCTKdieyt7

Contact our team about
IOCs for this adversary

?

During a cybersecurity incident, indicators of compromise (IoC) are clues and evidence of a data breach.

Unlock the adversary universe

Thank you for your request!

A member of our team will be in touch shortly.

CrowdStrike logo