Confucius

MITRE

Type:
Unknown

Country:
Unknown

First seen:
Unknown

Details:

[Confucius](https://attack.mitre.org/groups/G0142) is a cyber espionage group that has primarily targeted military personnel, high-profile personalities, business persons, and government organizations in South Asia since at least 2013. Security researchers have noted similarities between [Confucius](https://attack.mitre.org/groups/G0142) and [Patchwork](https://attack.mitre.org/groups/G0040), particularly in their respective custom malware code and targets.(Citation: TrendMicro Confucius APT Feb 2018)(Citation: TrendMicro Confucius APT Aug 2021)(Citation: Uptycs Confucius APT Jan 2021)

MITRE ATT&CK: View on MITRE

Techniques Used (19)

ID	ATT&CK	Tactics
T1041	Exfiltration Over C2 Channel	-
T1053.005	Scheduled Task	-
T1059.001	PowerShell	-
T1059.005	Visual Basic	-
T1071.001	Web Protocols	-
T1083	File and Directory Discovery	-
T1105	Ingress Tool Transfer	-
T1119	Automated Collection	-
T1203	Exploitation for Client Execution	-
T1204.001	Malicious Link	-
T1204.002	Malicious File	-
T1218.005	Mshta	-
T1221	Template Injection	-
T1547.001	Registry Run Keys / Startup Folder	-
T1566.001	Spearphishing Attachment	-

Aliases (196)

Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT Confucius APT

Related Malware (1)

WarzoneRAT
other

Metadata

ID:	914
Created:	13/01/2026 17:48
Updated:	21/04/2026 16:00