Aquatic Panda

Description

(CrowdStrike) AQUATIC PANDA is a China-based targeted intrusion adversary with a dual mission of intelligence collection and industrial espionage. It has likely operated since at least May 2020. AQUATIC PANDA operations have primarily focused on entities in the telecommunications, technology and government sectors. AQUATIC PANDA relies heavily on Cobalt Strike, and its toolset includes the unique Cobalt Strike downloader tracked as FishMaster. AQUATIC PANDA has also been observed delivering njRAT payloads to targets.

Names

Name	Name-Giver
Aquatic Panda	CrowdStrike

Country

China

Motivation

Information theft and espionage

First Seen

2020

Observed Sectors

Government
Technology
Telecommunications

Tools

Cobalt Strike
Fishmaster
njRAT

Information

https://www.crowdstrike.com/blog/overwatch-exposes-aquatic-panda-in-possession-of-log-4-shell-exploit-tools/

Other Information

Uuid

0730437a-1b64-4777-a920-64bbe97214c0

Last Card Change

2022-01-25

Threat Intelligence Garden

Explorer

Aquatic Panda

Aquatic Panda

Description

Names

Country

Motivation

First Seen

Observed Sectors

Tools

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks