NEW: Group Profiler — instant APT intel lookup. Try it →

← threatfilter.dev / all groups / LuminousMoth

LuminousMoth

G1014 China Espionage MITRE ATT&CK →

Overview

LuminousMoth is a Chinese-speaking cyber espionage group that has been active since at least October 2020. LuminousMoth has targeted high-profile organizations, including government entities, in Myanmar, the Philippines, Thailand, and other parts of Southeast Asia. Some security researchers have concluded there is a connection between LuminousMoth and Mustang Panda based on similar targeting and TTPs, as well as network infrastructure overlaps.

Targets

Civil society

Regions

Germany · United States

TTPs — 28 techniques across 12 tactics

Resource Development

Initial Access

Execution

Persistence

Defense Impairment

Credential Access

Lateral Movement

Command and Control

Tools & malware (2)

PlugX · Cobalt Strike

Reporting (2)