Moshen Dragon
0 incidentes
0 paises
0 sectores
apt CN Ultimo: -
Moshen Dragon is a cyber espionage threat actor assessed with high confidence to be Chinese-aligned, whose activities have been explicitly tracked by SentinelLabs since May 2022. The group's operations overlap significantly with those of other established Chinese advanced persistent threats such as RedFoxtrot and Nomad Panda, suggesting an operational history extending back to at least 2014. Moshen Dragon's primary motivation is cyber espionage, focusing on information theft, particularly from the telecommunications sector. What sets this group apart is its systematic and persistent abuse of legitimate security software through DLL search order hijacking, employing a trial-and-error approach to evade detection and deploy its malware. The group is commonly confused or partially overlaps with RedFoxtrot, Nomad Panda, Lucky Mouse, and Calypso due to shared tactics and tooling.
Sectores objetivo (SOCRadar)
TelecommunicationsNational Security&International AffairsComputer Systems Design and Related ServicesNational Security