Suspected attribution: China
Target sectors: Japanese and Taiwanese organizations in the high-tech, government services, media and financial services industries
Overview: China-based group concerned with Taiwan political and journalistic matters.
Associated malware: IRONHALO, ELMER
Attack vectors: Spearphishing emails sent to Taiwanese media organizations and webmail addresses. Lure documents contained instructions for registration and subsequent listing of goods on a Taiwanese auction website.
![World political](https://www.fireeye.com/content/fireeye-www/en_US/current-threats/apt-groups/_jcr_content/content-par/grid_66_33_full_1266199934/grid-33-right/image_2093882035.img.png/1513636113370.png)