← Back to Pulse Feed
PULSE DETAIL
Patchwork APT, also known as Dropping Elephant, Monsoon, and Hangover Group, has been active since at least 2015. This threat actor primarily focuses on gathering political and military intelligence, targeting organizations across South and Southeast Asia. Patchwork is recognized for its persistence and adaptability, often reusing and modifying existing tools rather than developing its own exploits. Despite this, the group has achieved significant success by leveraging effective social engineering tactics, customized lures, and multi-layered obfuscation techniques in their operations.
Indicators of Compromise (11)
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| FileHash-MD5 | 8c342a5519400df4044e2ed75ea5a936 | — | 2025-10-11 | |
| FileHash-MD5 | 92c13c07a4459bc5bae59bdea17284de | — | 2025-10-11 | |
| FileHash-MD5 | dfbdd34e0e463bb2266cab599396aa02 | — | 2025-10-11 | |
| FileHash-SHA1 | 00fdcecc28b62333946610d751aae3eed1c2eb3f | SHA1 of 8c342a5519400df4044e2ed75ea5a936 | 2025-10-11 | |
| FileHash-SHA1 | d0f0ba157c09cd4c4bf5905802c3f15b97a1fbee | SHA1 of 92c13c07a4459bc5bae59bdea17284de | 2025-10-11 | |
| FileHash-SHA1 | d421918db605e31a557b6ed4a200d9b9b8658b41 | SHA1 of dfbdd34e0e463bb2266cab599396aa02 | 2025-10-11 | |
| FileHash-SHA256 | 2f329a1171d2c6b1471604bf76157b6487c3e59d21bf4a0856e29dc4ba8753cb | SHA256 of 8c342a5519400df4044e2ed75ea5a936 | 2025-10-11 | |
| FileHash-SHA256 | b7c1a2f05b74613f8ff47d40c0a8562121bfb97482421c4475355b9ccd53c866 | SHA256 of 92c13c07a4459bc5bae59bdea17284de | 2025-10-11 | |
| FileHash-SHA256 | d20d4e90de355c90f4d9a0b7b80cf1aa32fe8b9b7aba5db730cfdde16df43021 | SHA256 of dfbdd34e0e463bb2266cab599396aa02 | 2025-10-11 | |
| domain | driftlance.org | — | 2025-10-11 | |
| domain | nr3cgovpk.org | — | 2025-10-11 |