mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-30 02:37:17 +00:00
Explosive malware added
This commit is contained in:
parent
0363dc607b
commit
1b92f13c93
1 changed files with 5 additions and 0 deletions
|
@ -616,6 +616,11 @@
|
||||||
"value": "Empire",
|
"value": "Empire",
|
||||||
"description": "Empire is a pure PowerShell post-exploitation agent built on cryptologically-secure communications and a flexible architecture. Empire implements the ability to run PowerShell agents without needing powershell.exe, rapidly deployable post-exploitation modules ranging from key loggers to Mimikatz, and adaptable communications to evade network detection, all wrapped up in a usability-focused framework",
|
"description": "Empire is a pure PowerShell post-exploitation agent built on cryptologically-secure communications and a flexible architecture. Empire implements the ability to run PowerShell agents without needing powershell.exe, rapidly deployable post-exploitation modules ranging from key loggers to Mimikatz, and adaptable communications to evade network detection, all wrapped up in a usability-focused framework",
|
||||||
"refs": ["https://github.com/adaptivethreat/Empire"]
|
"refs": ["https://github.com/adaptivethreat/Empire"]
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"value": "Explosive",
|
||||||
|
"description": "Beginning in late 2012, a carefully orchestrated attack campaign we call Volatile Cedar has been targeting individuals, companies and institutions worldwide. This campaign, led by a persistent attacker group, has successfully penetrated a large number of targets using various attack techniques, and specifically, a custom-made malware implant codenamed Explosive. ",
|
||||||
|
"refs": ["https://www.checkpoint.com/downloads/volatile-cedar-technical-report.pdf"]
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"version": 2,
|
"version": 2,
|
||||||
|
|
Loading…
Reference in a new issue