ZIRCONIUM

Also known as: APT31, Violet Typhoon, ZIRCONIUM, JUDGMENT PANDA, BRONZE VINEWOOD, Red keres, TA412, Zirconium, Chameleon, WebFans

ZIRCONIUM is a threat group operating out of China, active since at least 2017, that has targeted individuals associated with the 2020 US presidential election and prominent leaders in the international affairs community. Microsoft Targeting Elections September 2020 Check Point APT31 February 2021

🌍 Country China
🧭 ATT&CK G0128

Introduction

ZIRCONIUM is a threat group operating out of China, active since at least 2017, that has targeted individuals associated with the 2020 US presidential election and prominent leaders in the international affairs community. Microsoft Targeting Elections September 2020 Check Point APT31 February 2021

Activities and Tactics

Country of Origin: 🇨🇳 China

Notable Campaigns

Information pending cataloguing.

Tactics, Techniques, and Procedures (TTPs)

Information pending cataloguing.

Notable Indicators of Compromise (IOCs)

No curated IOCs are currently published for this actor. This section will be updated when stable, attributable indicators are available.

Malware and Tools

Information pending cataloguing.

Attribution and Evidence

Country of Origin: China Additional attribution information pending cataloguing.

References

[1] MITRE ATT&CK MITRE ATT&CK entry [2] Microsoft Targeting Elections September 2020 [3] Check Point APT31 February 2021