Uptime Hamster: 0d 0h 0mDeploy: 5 Jul 2026 10:25Updated: 2026-07-10
Logo del actor de amenaza Pat Bear

Pat Bear

0 incidentes 0 paises 0 sectores apt SY Ultimo: -
Ver en IntelTracker → APTTrail →
Pat Bear, also known as APT-C-37, is a cyber espionage group operating as a subgroup of the Syrian Electronic Army (SEA) under the designation Deadeye Jackal. First emerging in October 2015, the group's primary motivation is information theft and surveillance, notably conducting targeted attacks against entities like the "Islamic State". Pat Bear distinguishes itself through the use of Android malware disguised as legitimate applications, such as mimicking WhatsApp, to infiltrate devices and exfiltrate sensitive data. The group leverages its affiliation with the Syrian Electronic Army, which has evolved its tactics to use custom Android malware for surveillance, including campaigns exploiting COVID-19 lures.

Actores similares

APT29 (Cozy Bear)actor · 1Saint Bearactor · 1energetic-bearactor · 1ember-bearactor · 1Energetic Bearapt · 0Boulder Bearapt · 0White Bearapt · 0spacebearsransomware · 26space-bearsactor · 12apt-noisybearactor · 1
Tecnicas MITRE
T1083, T1213, T1547, T1033, T1036, T1570
CVEs relacionadas
CVE-2025-8088, CVE-2025-7851, CVE-2025-7850, CVE-2025-7847, CVE-2025-6558, CVE-2025-6554
Tipo
apt
Pais origen
SY
Motivacion
-
Impacto
108
Actualizado
Fri, 18 Ap

Paises objetivo (SOCRadar)

United Arab EmiratesAfghanistanArgentinaAustraliaAzerbaijanBelgiumBrazilCanadaSwitzerlandChina

Sectores objetivo (SOCRadar)

Construction of BuildingsOther Information ServicesSoftware PublishersReal EstateHospitalsAccommodationAir TransportationManufacturingConstructionPublic Administration