CN

TIDRONETIDRONE

Also known as: Earth Ammit · VENOM · TIDRONE

Origin
CN
Known aliases
3

Profile

TIDRONE is an unidentified threat actor linked to Chinese-speaking groups, with a focus on military-related industry chains, particularly drone manufacturers in Taiwan. The actor employs advanced malware variants such as CXCLNT and CLNTEND, which are distributed through ERP software or remote desktops. The consistency in file compilation times and operational patterns aligns with other Chinese espionage activities, indicating a likely espionage motive.

Aliases· 3

Earth AmmitVENOMTIDRONE

References

  1. https://www.trendmicro.com/en_us/research/24/i/tidrone-targets-military-and-satellite-industries-in-taiwan.html
  2. https://www.trendmicro.com/en_us/research/25/e/earth-ammit.html

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
TA2541
Actor
Tick
Actor
Antlion
Actor
Taidoor
Actor
Flax Typhoon
Actor
Thrip
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.