Sidewinder | Threat Actor Info

Also known as: Rattlesnake, Sidewinder, T-APT-04, SideWinder, 响尾蛇 - APT-C-24

Sidewinder is a suspected Indian threat actor group that has been active since at least 2012. They have been observed targeting government, military, and business entities throughout Asia, primarily focusing on Pakistan, China, Nepal, and Afghanistan. ATT Sidewinder January 2021 Securelist APT Trends April 2018 Cyble Sidewinder September 2020

🧭 ATT&CK G0121

Introduction

Sidewinder is a suspected Indian threat actor group that has been active since at least 2012. They have been observed targeting government, military, and business entities throughout Asia, primarily focusing on Pakistan, China, Nepal, and Afghanistan. ATT Sidewinder January 2021 Securelist APT Trends April 2018 Cyble Sidewinder September 2020

Activities and Tactics

Information pending cataloguing.

Notable Campaigns

Information pending cataloguing.

Tactics, Techniques, and Procedures (TTPs)

Information pending cataloguing.

Notable Indicators of Compromise (IOCs)

No curated IOCs are currently published for this actor. This section will be updated when stable, attributable indicators are available.

Malware and Tools

Information pending cataloguing.

Attribution and Evidence

Information pending cataloguing.

References

[1] MITRE ATT&CK MITRE ATT&CK entry [2] ATT Sidewinder January 2021 [3] Securelist APT Trends April 2018 [4] Cyble Sidewinder September 2020

Source Attribution

Structured source: MISP Galaxy

© The MITRE Corporation. This work is reproduced and distributed with the permission of The MITRE Corporation.

View ATT&CK group profile

Additional source provenance

misp galaxy Dataset
mitre Dataset

Source and license policy

🔍 Quick Filters

Top Countries

Risk Distribution

High

161

Critical

14

Low

2

Medium

1

Top Malware