Vicious Panda

Description

(Check Point) Check Point Research discovered a new campaign against the Mongolian public sector, which takes advantage of the current Coronavirus scare, in order to deliver a previously unknown malware implant to the target.

A closer look at this campaign allowed us to tie it to other operations which were carried out by the same anonymous group, dating back to at least 2016. Over the years, these operations targeted different sectors in multiple countries, such as Ukraine, Russia, and Belarus.

Names

NameName-Giver
Vicious PandaCheck Point
Bronze DudleySecureWorks

Country

Motivation

  • Information theft and espionage

First Seen

2015

Observed Sectors

Observed Countries

Tools

Operations

Information

Other Information

Uuid

61552e4f-08e1-402c-a482-2d278b33806d

Last Card Change

2021-01-07