ThaiCERT    ETDA    MDES
Report
Search
Home > List all groups

Threat Group Cards: A Threat Actor Encyclopedia

All groups

ChangedNameCountryObserved

APT groups

 Aggah[Unknown]2018-May 2020 
 Allanite[Unknown]2017 
 Anchor Panda, APT 14China2012 
 APT 3, Gothic Panda, BuckeyeChina2007-Nov 2017X
 APT 4, Maverick Panda, Wisp TeamChina2007-Oct 2018 
 APT 5, Keyhole PandaChina2007-Aug 2019 
 APT 6China2011 
 APT 12, Numbered PandaChina2009-Nov 2016 
 APT 16, SVCMONDRChina2015 
 APT 17, Deputy Dog, Elderwood, Sneaky PandaChina2009-Sep 2017 
 APT 18, Dynamite Panda, WekbyChina2009-May 2016 
 APT 19, Deep Panda, C0d0so0China2013-May 2019X
 APT 20, Violin PandaChina2014-2017 
 APT 29, Cozy Bear, The DukesRussia2008-2020X
 APT 30, Override PandaChina2005 
 APT 31, Judgment Panda, ZirconiumChina2016 
 APT 32, OceanLotus, SeaLotusVietnam2013-Jan 2020 
 APT 33, Elfin, MagnalliumIran2013-Nov 2019 
 APT 41China2012-Aug 2020 HOTX
 AVIVOREChina2015 
 Axiom, Group 72China2008-2008/2014 
 Bahamut[Middle East]2016-Jul 2018 
 BariumChina2016-Nov 2017X
 Berserk Bear, Dragonfly 2.0Russia2015-May 2017 
 The Big Bang[Unknown]2017 
 Bitter[South Asia]2013-May 2019 
 BlackgearChina2018-Jul 2018 
 BlackOasis[Middle East]2015-Oct 2017 
 BlackTech, Circuit Panda, Radio PandaChina2010-2020 
 Blind Eagle[Latin America]2018 
 Blue Termite, Cloudy OmegaChina2013 
 BookwormChina2015 
 Bronze Butler, Tick, RedBaldNight, Stalker PandaChina2010-Jun 2019 
 Buhtrap, Ratopak SpiderRussia2015-Jun 2019 
 CadelleIran2011 
 Callisto Group[Unknown]2013 
 CalypsoChina2016 
 Carbanak, AnunakUkraine2013-Aug 2018X
 CardinalLizardChina2014 
 Careto, The Mask[Unknown]2007-Feb 2014X
 Chafer, APT 39Iran2014-2018 
 Chimera[Unknown]2018-Late 2018 
 CIAUSA1947-Sep 2018X
     ↳ Subgroup: Longhorn, The LambertsUSA2009 
     ↳ Subgroup: [Unnamed group USA]USA2019-Mar 2020 
 Clever KittenIran2013 
 Cobalt GroupRussia2016-Oct 2019X
 Cold River[Unknown]2019 
 Comment Crew, APT 1China2006-May 2018X
 ConfuciusIndia2013-May 2018 
 CopyKittens, Slayer KittenIran2013-Jan 2017 
 Corkow, MetelRussia2011 
 CovelliteNorth Korea2017 
 Cutting Kitten, TG-2889Iran2012-Mar 2016X
 Cyber BerkutRussia2014-May 2015 
 Cyber Caliphate Army (CCA), United Cyber Caliphate (UCC)[ISIS]2014-Apr 2017 
 Dark CaracalLebanon2007 
 DarkHotelSouth Korea2007-May 2020 
 DarkHydrus, LazyMeerkatIran2016-Jan 2019 
 DarkUniverse[Unknown]2017 
 Desert Falcons[Gaza]2011-Apr 2020X
 DNSpionageIran2019-Apr 2019 
 Domestic KittenIran2016 
 Donot Team[Unknown]2018-May 2020 
 DragonOKChina2015-Jan 2017 
 DustSquad, Golden FalconRussia2014 
 Dust StormChina2010 
 El Machete[Unknown]2010-Jun 2020 
 Emissary Panda, APT 27, LuckyMouse, Bronze UnionChina2010-Mar 2020 
 EmpireMonkey, CobaltGoblin[Unknown]2018-Jan 2020X
 Energetic Bear, DragonflyRussia2010-Oct 2020 HOTX
 Equation GroupUSA2001-Aug 2016X
 Evil EyeChina2019-Jan 2020 
 Evilnum[Unknown]2018-Aug 2020 HOT 
 FIN4, Wolf SpiderRomania2013 
 FIN5[Unknown]2008 
 FIN6, Skeleton Spider[Unknown]2015-Mar 2020 
 FIN7Russia2013-May 2020X
 FIN8[Unknown]2016-Jul 2019 
 FIN10[Unknown]2016 
 FIN11[Unknown]2016-Oct 2020 HOT 
 Fishing Elephant[Unknown]2019 
 Flying Kitten, Ajax Security TeamIran2010-2013 
 FunnyDreamChina2018 
 GalliumChina2018 
 Gallmaker[Unknown]2017 
 Gamaredon GroupRussia2013-Apr 2020 
 Gangnam Industrial Style[Unknown]2019 
 GCHQUK1919-2010 
 GCMANRussia2016 
 GhostNet, Snooping DragonChina2009-2010X
 Goblin Panda, Cycldek, ConimesChina2013-2018 
 Gorgon GroupPakistan2017-Jul 2020 
 Group5Iran2015 
 HadesRussia2017-Oct 2020 HOTX
 Hexane[Unknown]2017 
 Hidden Lynx, Aurora PandaChina2009-2014X
 Honeybee[Unknown]2017 
 Hurricane PandaChina2013-Mar 2014 
 IAmTheKingRussia2018 
 Icefog, Dagger PandaChina2011-2018/2019 
 Inception Framework, Cloud AtlasRussia2012-2019 
 Infy, Prince of PersiaIran2013-Feb 2017X
 InvisiMoleRussia2013-Late 2019 
 IridiumIran2018-Dec 2018 
 IronHuskyChina2017 
 ITG18Iran2013-May 2020 
 Ke3chang, Vixen Panda, APT 15, GREF, Playful DragonChina2010-May 2020 
 Kimsuky, Velvet ChollimaNorth Korea2013-Mar 2020X
 Lazarus Group, Hidden Cobra, Labyrinth ChollimaNorth Korea2007-Aug 2020 HOTX
     ↳ Subgroup: Andariel, Silent ChollimaNorth Korea2014-Jun 2018 
     ↳ Subgroup: BeagleBoyzNorth Korea2014-Feb 2016 
     ↳ Subgroup: Bluenoroff, APT 38, Stardust ChollimaNorth Korea2014-Dec 2018 
 LeadChina2016 
 Leafminer, RaspiteIran2017 
 leetMXMexico2016 
 Leviathan, APT 40, TEMP.PeriscopeChina2013-Jan 2020 
 Libyan ScorpionsLibya2015 
 LookBack, TA410[Unknown]2019-Aug 2019 
 Lotus Blossom, Spring Dragon, ThripChina2012-Jun 2018 
 Lucky CatChina2011 
 LurkRussia2011-Jun 2016X
 Mabna Institute, Cobalt Dickens, Silent LibrarianIran2013-Sep 2020 HOTX
 MadiIran2011-Jul 2012 
 Magic Hound, APT 35, Cobalt Gypsy, Charming KittenIran2013-Jul 2020X
 MikroceenChina2017 
 MoafeeChina2014 
 Molerats, Extreme Jackal, Gaza Cybergang[Gaza]2012-Mar 2020 
 MoneyTakerRussia2016 
 MuddyWater, Seedworm, TEMP.Zagros, Static KittenIran2017-Oct 2020 HOTX
 Mustang Panda, Bronze PresidentChina2014-Mar 2020 
 Naikon, Lotus PandaChina2012-2017 
 NazarIran2008 
 NeodymiumTurkey2016 
 NetTraveler, APT 21, Hammer PandaChina2004-Dec 2015 
 Night DragonChina2009 
 Nightshade Panda, APT 9, Group 27China2013-Sep 2016 
 NineBlogChina2013 
 Nitro, Covert GroveChina2011-Jul 2014 
 OilRig, APT 34, Helix Kitten, ChryseneIran2014-Apr 2020X
     ↳ Subgroup: Greenbug, Volatile KittenIran2016-Oct 2017 
 OnionDogSouth Korea2013 
 Operation Black Atlas[Unknown]2015 
 Operation BugDropRussia2016 
 Operation Comando[Unknown]2018 
 Operation DRBControlChina2019 
 Operation Epic Manchego[Unknown]2020 
 Operation Ghoul[Unknown]2016 
 Operation GroundbaitUkraine2008 
 Operation HangOver, Monsoon, Viceroy TigerIndia2010-Jan 2020 
 Operation Olympic GamesUSA Israel2007 
 Operation Parliament[Unknown]2017 
 Operation Poisoned News, TwoSail JunkChina2020 
 Operation Poison NeedlesUkraine2018 
 Operation Potao Express[Unknown]2015 
 Operation Red SignatureChina2018 
 Operation Shady RATChina2006 
 Operation Titan RainChina2003 
 Operation ViceLeaker[Unknown]2018 
 Operation WizardOpiumNorth Korea2019 
 Orangeworm[Unknown]2015-Jan 2020 
 Packrat[Latin America]2008 
 Parisite, Fox Kitten, Pioneer KittenIran2017-Sep 2020 HOT 
 PassCVChina2016 
 Patchwork, Dropping ElephantIndia2013-Mar 2018 
 PittyTiger, Pitty PandaChina2011-2014 
 PKPLUGChina2016 
 PlatinumChina2009-Nov 2019 
 Poison Carp, Evil EyeChina2018-Early 2020 
 Poseidon GroupBrazil2005-Feb 2016X
 PowerPool[Unknown]2018 
 Promethium, StrongPityTurkey2012-Feb 2020 
 Pusikurac[Unknown]2019 
 Putter Panda, APT 2China2007 
 Rampant KittenIran2014 
 RancorChina2017 
 RATicate[Unknown]2019 
 Reaper, APT 37, Ricochet Chollima, ScarCruftNorth Korea2012-Mar 2020X
 RedAlphaChina2015-2017 
 RedCurl[Unknown]2018 
 RedDeltaChina2020-Aug 2020 HOT 
 RevengeHotels[Unknown]2015 
 Roaming TigerChina2014-Aug 2015 
 Rocket Kitten, Newscaster, NewsBeefIran2011-2017 
 RTMRussia2015 
 SafeChina2013 
 Samurai PandaChina2009 
 SandCatUzbekistan2018 
 Sandworm Team, Iron Viking, Voodoo BearRussia2009-Oct 2020 HOTX
 Scarlet MimicChina2015 
 Sea TurtleTurkey2017-Apr 2019 
 Shadow NetworkChina2010-2010X
 ShaggyPantherChina2018 
 SideWinder, RattlesnakeIndia2012-Mar 2019 
 SiestaChina2014 
 Silence, Contract Crew[Unknown]2016-Jan 2020 
 SimaIran2016 
 Slingshot[Unknown]2012 
 Snake WineChina2016 
 Snowglobe, Animal FarmFrance2011 
 Sofacy, APT 28, Fancy Bear, SednitRussia2004-Aug 2020 HOTX
 Sowbug[Unknown]2015 
 Sphinx[Unknown]2014 
 Stealth Falcon, FruityArmorUAE2012-Sep 2019 
 Stone Panda, APT 10, menuPassChina2006-Jul 2020X
 Strider, ProjectSauronUSA2011 
 SuckflyChina2014-Late 2015 
 Sweed[Unknown]2017-2019 
 Syrian Electronic Army (SEA), Deadeye JackalSyria2011-May 2018X
     ↳ Subgroup: Goldmouse, APT-C-27Syria2014 
     ↳ Subgroup: Pat Bear, APT-C-37Syria2015 
 TA2101, Maze Team[Unknown]2019-Sep 2020 HOT 
 TA2552[Unknown]2019 
 TA413China2019 
 TA428China2019-Mar 2019 
 TA459China2017 
 TA505, Graceful Spider, Gold EvergreenRussia2006-Oct 2020 HOTX
 TA530[Unknown]2016-Nov 2016 
 TA555[Unknown]2018 
 TaidoorChina2008 
 TaskMastersChina2010 
 TeamSpy CrewRussia2010-Feb 2017 
 TeleBotsRussia2015-Oct 2020 HOTX
 Temper Panda, admin@338China2014 
 Tempting Cedar SpywareLebanon2015 
 TEMP.VelesRussia2014-Feb 2019 
 Terbium[Unknown]2012 
 Tonto Team, HartBeat, Karma PandaChina2009-Dec 2019 
 Tortoiseshell, Imperial KittenIran2018-Sep 2019 
 Transparent Tribe, APT 36Pakistan2013-Apr 2020 
 Tropic Trooper, Pirate Panda, APT 23, KeyBoyChina2011-Apr 2020 
 Turbine Panda, APT 26, Shell Crew, WebMasters, KungFu KittensChina2010-Oct 2018X
 Turla, Waterbug, Venomous BearRussia1996-Jun 2020 
 Urpage[Middle East]2018 
 Vendetta, TA2719Turkey2020 
 Vicious PandaChina2015-Mar 2020 
 Volatile CedarLebanon2012-Jun 2015 
 WassoniteNorth Korea2018-Oct 2019 
 The White Company[Unknown]2017-Nov 2017 
 Whitefly, Mofang[Unknown]2012-Jul 2018 
 Wicked Spider, APT 22China2018 
 Wild Neutron, Butterfly, Sphinx Moth[Unknown]2013-Feb 2013 
 WildPressure[Unknown]2019 
 WindShift[Unknown]2018 
 Winnti Group, Blackfly, Wicked PandaChina2010-Feb 2020 
 WIRTE Group[Middle East]2018 
 XDSpy[Unknown]2011 
 xHunt[Unknown]2018 
 ZooPark[Unknown]2015 
 [Unnamed group Iran]Iran2019-May 2019X

Other groups

 Achilles[Unknown]2018-Oct 2018 
 Andromeda SpiderBelarus2011-Nov 2017X
 AvalancheRussia2006-Dec 2016X
 Bamboo Spider, TA544[Unknown]2016-May 2020X
 Boson Spider[Unknown]2015-Nov 2017 
 Boss Spider, Gold LowellIran2015-Nov 2018X
 CronRussia2015-Dec 2017X
 Cyber fighters of Izz Ad-Din Al Qassam, Fraternal JackalIran2012-May 2016X
 Dark BasinIndia2013 
 Deceptikons, DeathStalker[Unknown]2012 
 Doppel SpiderRussia2019-Sep 2020 HOT 
 Dungeon SpiderRussia2016-Feb 2018 
 FxmspKazakhstan2016-Jul 2020X
 GnosticplayersPakistan2019-Sep 2019 
 Guru SpiderRussia2014-Mar 2018 
 Hacking TeamItaly2003 
 Indrik SpiderRussia2014-Jul 2020X
 Infraud Organization[Various]2010-Jul 2020X
 Lunar SpiderRussia2019 
 Monty SpiderRussia2012-Mar 2020X
 Mummy Spider, TA542[Unknown]2014-Oct 2020 HOTX
 Narwhal Spider[Unknown]2007-Oct 2018X
 OldGremlinRussia2020 
 OurMineSaudi Arabia2016-Feb 2020 
 Operation WindigoRussia2011-Mar 2017X
 Pacha GroupChina2018-May 2019 
 Parinacota[Unknown]2018 
 Pinchy Spider, Gold SouthfieldRussia2018-Sep 2020 HOTX
 Retefe Gang, Operation EmmentalRussia2013 
 Roaming Mantis[Unknown]2017-Jun 2020 
 Rocke, Iron GroupChina2018-Summer 2019 
 Salty SpiderRussia2003-Dec 2018 
 Scully Spider, TA547[Unknown]2017-Sep 2019 
 Shadow BrokersUSA2016-Nov 2017X
 ShinyHunters[Unknown]2020-Jul 2020 
 Shark SpiderRussia2011-Jul 2014X
 Smoky Spider[Unknown]2011-Apr 2019X
 TA516[Unknown]2016-Feb 2020 
 TA554[Unknown]2017 
 Tiny Spider[Unknown]2015-2017 
 [Vault 7/8]USA2017-Mar 2020X
 Venom Spider, Golden ChickensRussia2017-Feb 2019 
 Wizard Spider, Gold BlackburnRussia2014-Oct 2020 HOTX
 YingmobChina2016-Jan 2017 
 Zombie SpiderRussia2010-Apr 2017X

Unknown groups

 Big PandaChina 
 Boulder BearRussia 
 Clockwork Spider[Unknown] 
 Corsair JackalTunisia 
 Dextorous Spider[Unknown] 
 Dizzy PandaChina 
 Electric PandaChina 
 Eloquent PandaChina 
 Flyfox[Unknown] 
 Foxy PandaChina 
 Ghost Jackal[Unknown] 
 Gibberish PandaChina 
 HolyWater[Unknown] 
 Impersonating PandaChina 
 Kryptonite PandaChina 
 Magic KittenIran 
 Magnetic Spider[Unknown] 
 NickelChina 
 Nomad PandaChina 
 Overlord Spider[Unknown] 
 Pale PandaChina 
 ParkingBear[Unknown] 
 Poisonous PandaChina 
 Predator PandaChina 
 Sabre PandaChina 
 Singing Spider[Unknown] 
 Spicy PandaChina 
 Test PandaChina 
 Toxic PandaChina 
 Union PandaChina 
 Union Spider[Unknown] 
 Viking Jackal[Unknown] 
 Wet PandaChina 
 _[ Interesting malware not linked to an actor yet ]_ 

329 groups listed (250 APT, 45 other, 34 unknown)

Last database change: 20 October 2020

Download the entire actor database in JSON or MISP format

Thailand Computer Emergency Response Team (ThaiCERT)
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents

Telephone +66 (0)2-123-1234
E-mail report@thaicert.or.th
PGP Download PGP key