Threat Actor Profile

APT41

State-sponsored threat group originating from CN. Suspected sponsor: People's Republic of China. Known to target Automotive, Business, Services and 13 other sectors. Uses 143 known MITRE ATT&CK techniques.

143 TTPs Mapped 16 Industries Tracked Real-Time Alerts

OriginCN

143MITRE TTPs

16Sectors Hit

Actor Overview

Origin Country

Suspected Sponsor

People's Republic of China

Known Techniques

143 TTPs

Target Industries

AutomotiveBusinessServicesCryptocurrencyEducationEnergyFinancialHealthcareHigh-TechIntergovernmentalMedia and EntertainmentPharmaceuticalsPrivate sectorRetailTelecommunicationsTravel

Suspected Victims

ChinaFranceHong KongIndiaItalyJapanMyanmarNetherlandsSingaporeSouth KoreaSouth AfricaSwitzerlandThailandTurkeyUnited KingdomUnited States

MITRE ATT&CK Techniques

T1059T1562T1110T1134T1087T1087.001T1087.002T1098T1098.007T1583T1583.007T1595T1595.002T1595.003T1071 +128 more

Related Threat Reports

Premium

APT Campaign Analysis - Q4 2025Dec 2025

New Tactics Observed in WildDec 2025

Infrastructure Mapping ReportDec 2025

Stay Updated

Get alerts when new intel on APT41 is published.

Actor Details

Primary Name

APT41

Known Aliases

G0096, TA415, Blackfly, Grayfly, LEAD, BARIUM, WICKED SPIDER, WICKED PANDA, BRONZE ATLAS, BRONZE EXPORT, Red Kelpie, G0044, Earth Baku, Amoeba, HOODOO, Brass Typhoon, Winnti, Double Dragon, TG-2633

Data Source

Precursor Intelligence

Need API Access?

Integrate threat actor data into your SIEM or SOAR.

View Plans →