Threat Actor Characterization
You’re viewing the read-only version.
Sign in for analyst tools (editors, promote draft, file/relations management, etc.)
PLA Unit 61486
ID: 43520d15b92a75368d812f7cca27d59751204
Cybercrime
State-Sponsored
Threat types: Intrusion, Espionage, Malware
Progress: 38%
Completeness: 33%
Freshness: 50%
Operation zone: UNKNOWN
Aliases
Limited alias preview
| Putter Panda | — | — | — |
Actor Network Graph
Open Network GraphMITRE ATT&CK®
confidence: medium
Putter Panda is a Chinese threat group that has been attributed to Unit 61486 of the 12th Bureau of the PLA’s 3rd General Staff Department (GSD). Ref: https://attack.mitre.org/groups/G0024/
| Technique | Technique name | Tactics | Evidence |
|---|---|---|---|
| T1027.013 | Encrypted/Encoded File | TA0005 |
|
| T1055.001 | Dynamic-link Library Injection | TA0004 TA0005 |
|
| T1547.001 | Registry Run Keys / Startup Folder | TA0003 TA0004 |
|
| T1562.001 | Disable or Modify Tools | TA0005 |
|
Executive brief
now
Saved successfully.
Hunting Playbook
now
Saved successfully.
IOC Appendix
now
Saved successfully.
OSINT Library
now
Saved successfully.