Threat Actor Profile
High APT
Description

APT12is a threat group that has been attributed to China. The group has targeted a variety of victims including but not limited to media outlets, high-tech companies, and multiple governments.[1]

Confidence Score
100%
Tags
mitre-attack crawled web-source mitre-group
First Seen

Unknown

Last Updated

April 29, 2026
18 hours, 44 minutes ago

Active Status
Active
Created

April 29, 2026

MITRE ATT&CK Techniques (5)
T1102 - Web Service
Command and Control
T1568 - Dynamic Resolution
Command and Control
T1203 - Exploitation for Client Execution
Execution
T1204 - User Execution
Execution
T1566 - Phishing
Initial Access
Indicators of Compromise

Loading IOCs…

IOC KQL for Sentinel
STIX Data 
{'aliases': [],
 'description': 'APT12is a threat group that has been attributed to China. The '
                'group has targeted a variety of victims including but not '
                'limited to media outlets, high-tech companies, and multiple '
                'governments.[1]',
 'external_references': [{'external_id': 'G0005',
                          'source_name': 'mitre-attack',
                          'url': 'https://attack.mitre.org/groups/G0005/'}],
 'id': 'threat-actor--G0005',
 'metadata': {'crawled_at': '2026-04-29T14:32:32.744297+00:00',
              'mitre_group_id': 'G0005',
              'page_title': 'APT12, IXESHE, DynCalc, Numbered Panda, DNSCALC, '
                            'Group G0005 | MITRE ATT&CK®'},
 'name': 'APT12',
 'type': 'threat-actor'}
Quick Actions
Related TTPs (5)
Web Service
Command and Control
Dynamic Resolution
Command and Control
Exploitation for Client Execu…
Execution
User Execution
Execution
Phishing
Initial Access
Back to Threat Actors
Dashboard Home