Threat Landscape Dashboard

Assessing today's threats and the relationships between them

Operation Target Pakistan

Group 21 targeted a range of sectors in South Asia with spear-phishing emails containing a malicious attachment which dropped a backdoor on the infected system to steal sensitive information. The threat actor has been in operation since at least 2017 and uses various techniques for persistence and defense evasion including PowerShell, mshta, obfuscation, and scheduled tasks.
Name Modified Date Sources
Operation Target Pakistan 2020-01-22