MISP/misp-galaxy
6
0
Fork 0
mirror of https://github.com/MISP/misp-galaxy.git synced 2024-11-26 16:57:18 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Add more info on Lotus Blossom

Browse source 
Add 2 more references, fix typo - Trend calls it "Esile", not "Eslie" as mistakenly stated by CFR. The backdoor itself is commonly referred to as Elise.
This commit is contained in:
Bart 2019-02-21 22:31:14 +00:00 committed by GitHub
parent 1dee86ccae
commit 06553bbec2
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
clusters/threat-actor.json
View file

@ -801,12 +801,15 @@
"refs": [ "refs": [
"https://securelist.com/blog/research/70726/the-spring-dragon-apt/", "https://securelist.com/blog/research/70726/the-spring-dragon-apt/",
"https://securelist.com/spring-dragon-updated-activity/79067/", "https://securelist.com/spring-dragon-updated-activity/79067/",
"https://www.cfr.org/interactive/cyber-operations/lotus-blossom" "https://www.cfr.org/interactive/cyber-operations/lotus-blossom",
"https://unit42.paloaltonetworks.com/operation-lotus-blossom/",
"https://www.accenture.com/t00010101T000000Z__w__/gb-en/_acnmedia/PDF-46/Accenture-Security-Elise-Threat-Analysis.pdf"
], ],
"synonyms": [ "synonyms": [
"Spring Dragon", "Spring Dragon",
"ST Group", "ST Group",
"Eslie" "Esile",
"DRAGONFISH"
] ]
}, },
"related": [ "related": [