confirmed
Volt Typhoon
Chinese state-sponsored campaign focused on pre-positioning within US critical infrastructure networks for potential disruption in the event of conflict. Uses living-off-the-land techniques to avoid detection.
Start date
1 June 2021
End date
—
Techniques
0
Indicators of compromise
19
19 sha256
Attributed actors
Targeting
Sectors
energywatertransportationcommunicationsgovernment
Regions
North AmericaPacific
Indicators of compromise (19)
SHA25619
d17317e1d5716b09cee904b8463a203dc6900d78ee2053276cc948e4f41c8295confirmed
b4f7c5e3f14fb57be8b5f020377b993618b6e3532a4e1eb1eae9976d4130cc74confirmed
6036390a2c81301a23c9452288e39cb34e577483d121711b6ba6230b29a3c9ffconfirmed
7939f67375e6b14dfa45ec70356e91823d12f28bbd84278992b99e0d2c12ace5confirmed
d6ab36cb58c6c8c3527e788fc9239d8dcc97468b6999cf9ccd8a815c8b4a80afconfirmed
c4b185dbca490a7f93bc96eefb9a597684fdf532d5a04aa4d9b4d4b1552c283bconfirmed
9dd101caee49c692e5df193b236f8d52a07a2030eed9bd858ed3aaccb406401aconfirmed
472ccfb865c81704562ea95870f60c08ef00bcd2ca1d7f09352398c05be5d05dconfirmed
baeffeb5fdef2f42a752c65c2d2a52e84fb57efc906d981f89dd518c314e231cconfirmed
e453e6efc5a002709057d8648dbe9998a49b9a12291dee390bb61c98a58b6e95confirmed
cd69e8a25a07318b153e01bba74a1ae60f8fc28eb3d56078f448461400baa984confirmed
3e9fc13fab3f8d8120bd01604ee50ff65a40121955a4150a6d2c007d34807642confirmed
17506c2246551d401c43726bdaec800f8d41595d01311cf38a19140ad32da2f4confirmed
93ce3b6d2a18829c0212542751b309dacbdc8c1d950611efe2319aa715f3a066confirmed
4b0c4170601d6e922cf23b1caf096bba2fade3dfcf92f0ab895a5f0b9a310349confirmed
450437d49a7e5530c6fb04df2e56c3ab1553ada3712fab02bd1eeb1f1adbc267confirmed
389a497f27e1dd7484325e8e02bbdf656d53d5cf2601514e9b8d8974befddf61confirmed
8fa3e8fdbaa6ab5a9c44720de4514f19182adc0c9c6001c19cf159b79c0ae9c2confirmed
c0fc29a52ec3202f71f6378d9f7f9a8a3a10eb19acb8765152d758aded98c76dconfirmed