mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-27 01:07:18 +00:00
Merge pull request #4 from cvandeplas/master
additional adversary groups
This commit is contained in:
commit
213109536e
1 changed files with 39 additions and 12 deletions
|
@ -132,7 +132,8 @@
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
"synonyms": [
|
"synonyms": [
|
||||||
"C0d0so"
|
"C0d0so",
|
||||||
|
"Sunshop Group"
|
||||||
],
|
],
|
||||||
"refs": [
|
"refs": [
|
||||||
"https://www.proofpoint.com/us/exploring-bergard-old-malware-new-tricks"
|
"https://www.proofpoint.com/us/exploring-bergard-old-malware-new-tricks"
|
||||||
|
@ -211,7 +212,8 @@
|
||||||
"APT-2",
|
"APT-2",
|
||||||
"MSUpdater",
|
"MSUpdater",
|
||||||
"4HCrew",
|
"4HCrew",
|
||||||
"SULPHUR"
|
"SULPHUR",
|
||||||
|
"TG-6952"
|
||||||
]
|
]
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
|
@ -275,7 +277,9 @@
|
||||||
"APT 17",
|
"APT 17",
|
||||||
"Deputy Dog",
|
"Deputy Dog",
|
||||||
"Group 8",
|
"Group 8",
|
||||||
"APT17"
|
"APT17",
|
||||||
|
"Hidden Lynx",
|
||||||
|
"Tailgater Team"
|
||||||
]
|
]
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
|
@ -435,7 +439,8 @@
|
||||||
"Vixen Panda",
|
"Vixen Panda",
|
||||||
"Ke3Chang",
|
"Ke3Chang",
|
||||||
"GREF",
|
"GREF",
|
||||||
"Playful Dragon"
|
"Playful Dragon",
|
||||||
|
"APT 15"
|
||||||
]
|
]
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
|
@ -456,6 +461,9 @@
|
||||||
"refs": [
|
"refs": [
|
||||||
"https://securelist.com/blog/research/35936/nettraveler-is-running-red-star-apt-attacks-compromise-high-profile-victims/"
|
"https://securelist.com/blog/research/35936/nettraveler-is-running-red-star-apt-attacks-compromise-high-profile-victims/"
|
||||||
],
|
],
|
||||||
|
"synonyms": [
|
||||||
|
"APT 21"
|
||||||
|
],
|
||||||
"country": "CN"
|
"country": "CN"
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
|
@ -492,6 +500,9 @@
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
"value": "Beijing Group",
|
"value": "Beijing Group",
|
||||||
|
"synonyms": [
|
||||||
|
"Sneaky Panda"
|
||||||
|
],
|
||||||
"country": "CN"
|
"country": "CN"
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
|
@ -572,14 +583,20 @@
|
||||||
"value": "Flying Kitten",
|
"value": "Flying Kitten",
|
||||||
"synonyms": [
|
"synonyms": [
|
||||||
"SaffronRose",
|
"SaffronRose",
|
||||||
"AjaxSecurityTeam"
|
"Saffron Rose",
|
||||||
|
"AjaxSecurityTeam",
|
||||||
|
"Ajax Security Team",
|
||||||
|
"Group 26"
|
||||||
],
|
],
|
||||||
"country": "IR"
|
"country": "IR"
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
"value": "Cutting Kitten",
|
"value": "Cutting Kitten",
|
||||||
"synonyms": [
|
"synonyms": [
|
||||||
"ITSecTeam"
|
"ITSecTeam",
|
||||||
|
"Threat Group 2889",
|
||||||
|
"TG-2889",
|
||||||
|
"Ghambar"
|
||||||
],
|
],
|
||||||
"country": "IR"
|
"country": "IR"
|
||||||
},
|
},
|
||||||
|
@ -587,7 +604,8 @@
|
||||||
"value": "Charming Kitten",
|
"value": "Charming Kitten",
|
||||||
"synonyms": [
|
"synonyms": [
|
||||||
"Newscaster",
|
"Newscaster",
|
||||||
"Parastoo"
|
"Parastoo",
|
||||||
|
"Group 83"
|
||||||
],
|
],
|
||||||
"country": "IR"
|
"country": "IR"
|
||||||
},
|
},
|
||||||
|
@ -597,6 +615,9 @@
|
||||||
"refs": [
|
"refs": [
|
||||||
"http://www.scmagazineuk.com/iran-and-russia-blamed-for-state-sponsored-espionage/article/330401/"
|
"http://www.scmagazineuk.com/iran-and-russia-blamed-for-state-sponsored-espionage/article/330401/"
|
||||||
],
|
],
|
||||||
|
"synonyms": [
|
||||||
|
"Group 42"
|
||||||
|
],
|
||||||
"country": "IR"
|
"country": "IR"
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
|
@ -653,7 +674,8 @@
|
||||||
"Sednit",
|
"Sednit",
|
||||||
"TsarTeam",
|
"TsarTeam",
|
||||||
"TG-4127",
|
"TG-4127",
|
||||||
"Group-4127"
|
"Group-4127",
|
||||||
|
"STRONTIUM"
|
||||||
]
|
]
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
|
@ -675,7 +697,9 @@
|
||||||
"OfficeMonkeys",
|
"OfficeMonkeys",
|
||||||
"APT29",
|
"APT29",
|
||||||
"Cozy Bear",
|
"Cozy Bear",
|
||||||
"The Dukes"
|
"The Dukes",
|
||||||
|
"Minidionis",
|
||||||
|
"SeaDuke"
|
||||||
]
|
]
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
|
@ -687,7 +711,8 @@
|
||||||
"Venomous Bear",
|
"Venomous Bear",
|
||||||
"Group 88",
|
"Group 88",
|
||||||
"Waterbug",
|
"Waterbug",
|
||||||
"WRAITH"
|
"WRAITH",
|
||||||
|
"Turla Team"
|
||||||
]
|
]
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
|
@ -702,7 +727,8 @@
|
||||||
"Crouching Yeti",
|
"Crouching Yeti",
|
||||||
"Group 24",
|
"Group 24",
|
||||||
"Havex",
|
"Havex",
|
||||||
"CrouchingYeti"
|
"CrouchingYeti",
|
||||||
|
"Koala Team"
|
||||||
]
|
]
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
|
@ -723,7 +749,8 @@
|
||||||
"description": "Groups targeting financial organizations or people with significant financial assets.",
|
"description": "Groups targeting financial organizations or people with significant financial assets.",
|
||||||
"country": "RU",
|
"country": "RU",
|
||||||
"synonyms": [
|
"synonyms": [
|
||||||
"Carbanak"
|
"Carbanak",
|
||||||
|
"Carbon Spider"
|
||||||
]
|
]
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
|
|
Loading…
Reference in a new issue