Introduction
Deep Panda is a suspected Chinese threat group known to target many industries, including government, defense, financial, and telecommunications. Alperovitch 2014 The intrusion into healthcare company Anthem has been attributed to Deep Panda. ThreatConnect Anthem This group is also known as Shell Crew, WebMasters, KungFu Kittens, and PinkPanther. RSA Shell Crew Deep Panda also appears to be known as Black Vine based on the attribution of both group names to the Anthem intrusion. Symantec Black Vine Some analysts track Deep Panda and APT19 as the same group, but it is unclear from open source information if the groups are the same. ICIT Chinaβs Espionage Jul 2016
Activities and Tactics
Information pending cataloguing.
Notable Campaigns
Information pending cataloguing.
Tactics, Techniques, and Procedures (TTPs)
Information pending cataloguing.
Notable Indicators of Compromise (IOCs)
No curated IOCs are currently published for this actor. This section will be updated when stable, attributable indicators are available.
Malware and Tools
Information pending cataloguing.
Attribution and Evidence
Information pending cataloguing.
References
[1] MITRE ATT&CK MITRE ATT&CK entry [2] Alperovitch 2014 [3] ThreatConnect Anthem [4] RSA Shell Crew [5] Symantec Black Vine [6] ICIT Chinaβs Espionage Jul 2016