Vault Panda

China

Details

VAULT PANDA, an adversary active since at least October 2021, targets the financial services, gambling, technology, academic, defense, and government sectors. These activities are likely intended to facilitate intelligence collection.  VAULT PANDA has access to multiple shared China-nexus malware families, including KEYPLUG, Winnti, Melofee, HelloBot, and ShadowPad. Additionally, the adversary use...

Community Identifiers

KU0Vx9E2c4dBJeZ

Objective

  • aLYMDvIoUJC325RqcmbFXdj

Motivation

  • SCO3DeFMyPHxZTY

Contact our team about
IOCs for this adversary

?

During a cybersecurity incident, indicators of compromise (IoC) are clues and evidence of a data breach.

Unlock the adversary universe

Thank you for your request!

A member of our team will be in touch shortly.

CrowdStrike logo