Uptime Hamster: 15d 6h 36mDeploy: 13 Jul 2026 08:04Updated: 2026-07-14
Logo del actor de amenaza Moshen Dragon

Moshen Dragon

0 incidentes 0 paises 0 sectores apt CN Ultimo: -
Ver en IntelTracker → APTTrail →
Moshen Dragon is a cyber espionage threat actor assessed with high confidence to be Chinese-aligned, whose activities have been explicitly tracked by SentinelLabs since May 2022. The group's operations overlap significantly with those of other established Chinese advanced persistent threats such as RedFoxtrot and Nomad Panda, suggesting an operational history extending back to at least 2014. Moshen Dragon's primary motivation is cyber espionage, focusing on information theft, particularly from the telecommunications sector. What sets this group apart is its systematic and persistent abuse of legitimate security software through DLL search order hijacking, employing a trial-and-error approach to evade detection and deploy its malware. The group is commonly confused or partially overlaps with RedFoxtrot, Nomad Panda, Lucky Mouse, and Calypso due to shared tactics and tooling.

Actores similares

Aoqin Dragonapt · 1Night Dragonapt · 1night-dragonactor · 1aoqin-dragonactor · 1sharp-dragon--chkptactor · 1Amaranth-Dragonapt · 0Camaro Dragonapt · 0Operation Dragon Castlingapt · 0dragonforceransomware · 580dragonransomwareransomware · 2
Tecnicas MITRE
T1190, T1595.003, T1071, T1566.001
Tipo
apt
Pais origen
CN
Motivacion
-
Impacto
4
Actualizado
Sat, 25 No

Sectores objetivo (SOCRadar)

TelecommunicationsNational Security&International AffairsComputer Systems Design and Related ServicesNational Security