Advance Persistent Threats (APT) continues to be on the top of the list of potential threats by cyber security personnel. The assessed threat is well-deserved, as APTs are capable and relentless, stopping at nothing when it comes to getting at its target. However, their threat is often not properly contextualized, overlooking how they fit into the real world. APTs are often just one of means for a larger organization to contribute to its goals. For both state-sponsored groups or criminal groups, cyber activity is only a collection process. Collected data often requires processing and analysis to be useful, and criminal groups require significant logistical capability to monetize the take. As companies look at potential cyber threats from the APTs, assessing the goals of those entities controlling the APTs provide better insight into the actual intent.