mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-26 16:57:18 +00:00
[threat-actors] Add TIDRONE
This commit is contained in:
parent
d935c1e62a
commit
164222d3c6
1 changed files with 11 additions and 0 deletions
|
@ -16526,6 +16526,17 @@
|
||||||
},
|
},
|
||||||
"uuid": "e6b27374-5055-4c2c-950b-06b4fc75a210",
|
"uuid": "e6b27374-5055-4c2c-950b-06b4fc75a210",
|
||||||
"value": "UNC4540"
|
"value": "UNC4540"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"description": "TIDRONE is an unidentified threat actor linked to Chinese-speaking groups, with a focus on military-related industry chains, particularly drone manufacturers in Taiwan. The actor employs advanced malware variants such as CXCLNT and CLNTEND, which are distributed through ERP software or remote desktops. The consistency in file compilation times and operational patterns aligns with other Chinese espionage activities, indicating a likely espionage motive.",
|
||||||
|
"meta": {
|
||||||
|
"country": "CN",
|
||||||
|
"refs": [
|
||||||
|
"https://www.trendmicro.com/en_us/research/24/i/tidrone-targets-military-and-satellite-industries-in-taiwan.html"
|
||||||
|
]
|
||||||
|
},
|
||||||
|
"uuid": "020d512f-0636-482b-8033-2bd404e0321f",
|
||||||
|
"value": "TIDRONE"
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"version": 313
|
"version": 313
|
||||||
|
|
Loading…
Reference in a new issue