ETDA สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์
Electronic Transactions Development Agency
Report
Search
Home > List all groups > Blind Eagle

Threat Group Cards: A Threat Actor Encyclopedia

Permanent link APT group: Blind Eagle

NamesBlind Eagle (Qihoo 360)
APT-C-36 (Qihoo 360)
CountryColombia Colombia
MotivationInformation theft and espionage
First seen2018
Description(Qihoo 360) Since April 2018, an APT group (Blind Eagle, APT-C-36) suspected coming from South America carried out continuous targeted attacks against Colombian government institutions as well as important corporations in financial sector, petroleum industry, professional manufacturing, etc.

Till this moment, 360 Threat Intelligence Center captured 29 bait documents, 62 Trojan samples and multiple related malicious domains in total. Attackers are targeting Windows platform and aiming at government institutions as well as big companies in Colombia.
ObservedSectors: Energy, Financial, Government, Healthcare, Manufacturing and large domestic companies and multinational corporation branches.
Countries: Colombia, Ecuador, Panama, Spain.
Tools usedAsyncRAT, BitRAT, Imminent Monitor RAT, njRAT, LimeRAT, RemcosRAT, Warzone RAT.
Information<https://ti.360.net/blog/articles/apt-c-36-continuous-attacks-targeting-colombian-government-institutions-and-corporations-en/>

Last change to this card: 01 November 2021

Download this actor card in PDF or JSON format

Previous: BlackTech, Circuit Panda, Radio Panda
Next: Blue Termite, Cloudy Omega

Digital Service Security Center
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents

Telephone +66 (0)2-123-1227
E-mail [email protected]