G0142

G0142Confucius

Description

[Confucius](https://attack.mitre.org/groups/G0142) is a cyber espionage group that has primarily targeted military personnel, high-profile personalities, business persons, and government organizations in South Asia since at least 2013. Security researchers have noted similarities between [Confucius](https://attack.mitre.org/groups/G0142) and [Patchwork](https://attack.mitre.org/groups/G0040), particularly in their respective custom malware code and targets.(Citation: TrendMicro Confucius APT Feb 2018)(Citation: TrendMicro Confucius APT Aug 2021)(Citation: Uptycs Confucius APT Jan 2021)

References

  1. https://attack.mitre.org/groups/G0142
  2. https://www.trendmicro.com/en_us/research/18/b/deciphering-confucius-cyberespionage-operations.html
  3. https://www.trendmicro.com/en_us/research/21/h/confucius-uses-pegasus-spyware-related-lures-to-target-pakistani.html
  4. https://www.uptycs.com/blog/confucius-apt-deploys-warzone-rat

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
Confucious
Group
APT41
Group
Gelsemium
Group
Patchwork
Group
Mustang Panda
Group
TA459
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.