NightEagle

🟒 Low
Also known as: APT-Q-95, NightEagle

NightEagle is an advanced Threat Actor that targeted China’s High-Tech Industry and Military Organisation, leveraging sophisticated techniques, 0 days, and specialized detection avoiding malware. The threat actor seems to have access to significant funding, with dedicated infrastructure, and focuses on low-noise, low-impact intelligence gathering operations. NightEagle is identified as a North-American, state-sponsored or affiliated group that has been active since at least 2023.

🌍 Country United States
⚑ Risk Level Low
🎯 Incident Type Espionage
Military Government, Administration Technology Government Private Sector

Targeted Victims

China

Introduction

NightEagle is an advanced Threat Actor that targeted China’s High-Tech Industry and Military Organisation, leveraging sophisticated techniques, 0 days, and specialized detection avoiding malware. The threat actor seems to have access to significant funding, with dedicated infrastructure, and focuses on low-noise, low-impact intelligence gathering operations. NightEagle is identified as a North-American, state-sponsored or affiliated group that has been active since at least 2023.

Activities and Tactics

Targeted Sectors: Military, Government, Administration, Technology, Government, Private Sector

Country of Origin: πŸ‡ΊπŸ‡Έ United States

Risk Level: Low

Incident Type: Espionage

Suspected Victims: China

Notable Campaigns

Information pending cataloguing.

Tactics, Techniques, and Procedures (TTPs)

Information pending cataloguing.

Notable Indicators of Compromise (IOCs)

No curated IOCs are currently published for this actor. This section will be updated when stable, attributable indicators are available.

Malware and Tools

  • China Chopper

Attribution and Evidence

Country of Origin: United States Additional attribution information pending cataloguing.

References

References pending cataloguing.