Last database change | 20 January 2021 |
Total threat groups | 345 (260 APT, 51 other, 34 unknown) |
Total group aliases | 924 |
Total operations | 1396 |
Total counter operations | 92 |
Unique source countries | 28 |
Unique victim countries | 165 |
Unique victim sectors | 42 |
Unique tools | 1434 |
Total tool aliases | 2084 |
Unique external references | 5228 |
Pos | Victim country | Count |
1 | ![]() | 134 |
2 | ![]() | 92 |
3 | ![]() | 79 |
4 | ![]() | 70 |
5 | ![]() | 69 |
6 | ![]() | 62 |
7 | ![]() | 55 |
![]() | 55 | |
9 | ![]() | 52 |
10 | ![]() | 48 |
11 | ![]() | 47 |
12 | ![]() | 45 |
13 | ![]() | 44 |
14 | ![]() | 43 |
![]() | 43 | |
16 | ![]() | 40 |
17 | ![]() | 39 |
18 | ![]() | 38 |
![]() | 38 | |
20 | ![]() | 37 |
21 | ![]() | 36 |
22 | ![]() | 35 |
![]() | 35 | |
24 | ![]() | 34 |
25 | ![]() | 33 |
26 | ![]() | 32 |
27 | ![]() | 31 |
![]() | 31 |
Pos | Source country | Count |
1 | ![]() | 111 |
2 | ![]() | 46 |
3 | ![]() | 31 |
4 | ![]() | 10 |
5 | ![]() | 8 |
6 | ![]() | 5 |
7 | ![]() | 4 |
8 | ![]() | 3 |
![]() | 3 | |
![]() | 3 | |
![]() | 3 | |
12 | ![]() | 2 |
![]() | 2 | |
![]() | 2 | |
![]() | 2 | |
16 | ![]() | 1 |
![]() | 1 | |
![]() | 1 | |
![]() | 1 | |
![]() | 1 | |
![]() | 1 | |
![]() | 1 | |
![]() | 1 | |
![]() | 1 | |
![]() | 1 | |
![]() | 1 | |
![]() | 1 | |
![]() | 1 |
Pos | Tool | Count |
1 | Mimikatz | 44 |
2 | Living off the Land | 39 |
3 | Cobalt Strike | 32 |
4 | PlugX | 29 |
5 | Poison Ivy | 24 |
6 | Gh0st RAT | 22 |
7 | PsExec | 19 |
8 | njRAT | 15 |
9 | ProcDump | 11 |
10 | LaZagne | 10 |
Pos | Victim sector | Count |
1 | Government | 144 |
2 | Defense | 88 |
3 | Financial | 82 |
4 | Energy | 62 |
5 | Media | 56 |
Telecommunications | 56 | |
7 | Education | 46 |
8 | Healthcare | 42 |
9 | Manufacturing | 37 |
10 | High-Tech | 31 |
Thailand Computer Emergency Response Team (ThaiCERT) Follow us on![]() ![]() |
Report incidents |
|
![]() |
+66 (0)2-123-1234 | |
![]() |
report@thaicert.or.th | |
![]() |
Download PGP key |