Uptime Hamster: 15d 9h 12mDeploy: 13 Jul 2026 08:04Updated: 2026-07-14
Logo del actor de amenaza Danti

Danti

0 incidentes 0 paises 0 sectores apt CN Ultimo: -
Aliases: "74828", "cve-2015-2545-overview-of-current-threats", CVE-2015-2545, se ha relacionado con países como Kazajistán, Kirguistán, Uzbekestán, Myanmar, Nepal, Filippinas, probablemente vinculado a otros grupos como NetTraveller, DragonOK
Ver en IntelTracker → APTTrail →
Danti, also known as APT16 and Group 73, is a state-sponsored cyber espionage group assessed with high confidence to be of Chinese origin. The group emerged as early as 2013 and primarily conducts operations targeting government institutions in the Asia-Pacific region, including Japan, Taiwan, and India. Their core motivation is cyber espionage, focusing on intelligence gathering and intellectual property theft. Danti distinguishes itself through its consistent use of spear-phishing attacks combined with the exploitation of known vulnerabilities in widely used software, particularly Microsoft Office documents, to deliver custom malware such as the ELMER backdoor.

Aliases del actor

"74828""cve-2015-2545-overview-of-current-threats"CVE-2015-2545se ha relacionado con países como KazajistánKirguistánUzbekestánMyanmarNepalFilippinasprobablemente vinculado a otros grupos como NetTravellerDragonOK

Actores similares

cve-2023-41991actor · 1cve-2023-36884actor · 1Aoqin Dragonapt · 1Night Dragonapt · 1night-dragonactor · 1aoqin-dragonactor · 1sharp-dragon--chkptactor · 1Amaranth-Dragonapt · 0Camaro Dragonapt · 0Moshen Dragonapt · 0
Tecnicas MITRE
T1105, T1071.001, T1210
Tipo
apt
Pais origen
CN
Motivacion
-
Impacto
16
Actualizado
Wed, 01 Ju

Sectores objetivo (SOCRadar)

Information ServicesEducational ServicesPublic AdministrationBanking