APT group: Blind Eagle| Names | Blind Eagle (Qihoo 360) APT-C-36 (Qihoo 360) | |
| Country | [Latin America] | |
| Sponsor | State-sponsored | |
| Motivation | Information theft and espionage | |
| First seen | 2018 | |
| Description | (Qihoo 360) Since April 2018, an APT group (Blind Eagle, APT-C-36) suspected coming from South America carried out continuous targeted attacks against Colombian government institutions as well as important corporations in financial sector, petroleum industry, professional manufacturing, etc. Till this moment, 360 Threat Intelligence Center captured 29 bait documents, 62 Trojan samples and multiple related malicious domains in total. Attackers are targeting Windows platform and aiming at government institutions as well as big companies in Colombia. | |
| Observed | Sectors: Financial, Government and large domestic companies and multinational corporation branches. Countries: Colombia. | |
| Tools used | Imminent Monitor RAT, LimeRAT. | |
| Information | <https://ti.360.net/blog/articles/apt-c-36-continuous-attacks-targeting-colombian-government-institutions-and-corporations-en/> | |
Last change to this card: 14 April 2020
|
Thailand Computer Emergency Response Team (ThaiCERT) Follow us on
|
Report incidents |
|
 |
+66 (0)2-123-1234 | |
 |
report@thaicert.or.th | |
 |
Download PGP key | |