Tracing back activities to 2010, BlackTech is a commercial cyber espionage group which targets including finance, government, education and technology. Their main motive remains around gathering sensitive information and data including confidential documents for their financial gains. Their common methods are spear phishing emails that targets specific individuals and targeted organizations. Threat actor uses Trojan horses such as Plead, TSCookie, Gh0st, and Bifrose made for covert computer surveillance. With their ties linked to China, they have attacked more than 40 countries for their gains and continue to expand their operations towards other countries. Countries that are targeted by these threat actors are Hong Kong, India, Indonesia, Iran, Japan, Jordan, Kazakhstan, Kyrgyzstan.