Merge pull request #4 from cvandeplas/master

additional adversary groups
This commit is contained in:
Alexandre Dulaunoy 2016-10-19 14:43:16 +02:00 committed by GitHub
commit 213109536e

View file

@ -132,7 +132,8 @@
}, },
{ {
"synonyms": [ "synonyms": [
"C0d0so" "C0d0so",
"Sunshop Group"
], ],
"refs": [ "refs": [
"https://www.proofpoint.com/us/exploring-bergard-old-malware-new-tricks" "https://www.proofpoint.com/us/exploring-bergard-old-malware-new-tricks"
@ -211,7 +212,8 @@
"APT-2", "APT-2",
"MSUpdater", "MSUpdater",
"4HCrew", "4HCrew",
"SULPHUR" "SULPHUR",
"TG-6952"
] ]
}, },
{ {
@ -275,7 +277,9 @@
"APT 17", "APT 17",
"Deputy Dog", "Deputy Dog",
"Group 8", "Group 8",
"APT17" "APT17",
"Hidden Lynx",
"Tailgater Team"
] ]
}, },
{ {
@ -435,7 +439,8 @@
"Vixen Panda", "Vixen Panda",
"Ke3Chang", "Ke3Chang",
"GREF", "GREF",
"Playful Dragon" "Playful Dragon",
"APT 15"
] ]
}, },
{ {
@ -456,6 +461,9 @@
"refs": [ "refs": [
"https://securelist.com/blog/research/35936/nettraveler-is-running-red-star-apt-attacks-compromise-high-profile-victims/" "https://securelist.com/blog/research/35936/nettraveler-is-running-red-star-apt-attacks-compromise-high-profile-victims/"
], ],
"synonyms": [
"APT 21"
],
"country": "CN" "country": "CN"
}, },
{ {
@ -492,6 +500,9 @@
}, },
{ {
"value": "Beijing Group", "value": "Beijing Group",
"synonyms": [
"Sneaky Panda"
],
"country": "CN" "country": "CN"
}, },
{ {
@ -572,14 +583,20 @@
"value": "Flying Kitten", "value": "Flying Kitten",
"synonyms": [ "synonyms": [
"SaffronRose", "SaffronRose",
"AjaxSecurityTeam" "Saffron Rose",
"AjaxSecurityTeam",
"Ajax Security Team",
"Group 26"
], ],
"country": "IR" "country": "IR"
}, },
{ {
"value": "Cutting Kitten", "value": "Cutting Kitten",
"synonyms": [ "synonyms": [
"ITSecTeam" "ITSecTeam",
"Threat Group 2889",
"TG-2889",
"Ghambar"
], ],
"country": "IR" "country": "IR"
}, },
@ -587,7 +604,8 @@
"value": "Charming Kitten", "value": "Charming Kitten",
"synonyms": [ "synonyms": [
"Newscaster", "Newscaster",
"Parastoo" "Parastoo",
"Group 83"
], ],
"country": "IR" "country": "IR"
}, },
@ -597,6 +615,9 @@
"refs": [ "refs": [
"http://www.scmagazineuk.com/iran-and-russia-blamed-for-state-sponsored-espionage/article/330401/" "http://www.scmagazineuk.com/iran-and-russia-blamed-for-state-sponsored-espionage/article/330401/"
], ],
"synonyms": [
"Group 42"
],
"country": "IR" "country": "IR"
}, },
{ {
@ -653,7 +674,8 @@
"Sednit", "Sednit",
"TsarTeam", "TsarTeam",
"TG-4127", "TG-4127",
"Group-4127" "Group-4127",
"STRONTIUM"
] ]
}, },
{ {
@ -675,7 +697,9 @@
"OfficeMonkeys", "OfficeMonkeys",
"APT29", "APT29",
"Cozy Bear", "Cozy Bear",
"The Dukes" "The Dukes",
"Minidionis",
"SeaDuke"
] ]
}, },
{ {
@ -687,7 +711,8 @@
"Venomous Bear", "Venomous Bear",
"Group 88", "Group 88",
"Waterbug", "Waterbug",
"WRAITH" "WRAITH",
"Turla Team"
] ]
}, },
{ {
@ -702,7 +727,8 @@
"Crouching Yeti", "Crouching Yeti",
"Group 24", "Group 24",
"Havex", "Havex",
"CrouchingYeti" "CrouchingYeti",
"Koala Team"
] ]
}, },
{ {
@ -723,7 +749,8 @@
"description": "Groups targeting financial organizations or people with significant financial assets.", "description": "Groups targeting financial organizations or people with significant financial assets.",
"country": "RU", "country": "RU",
"synonyms": [ "synonyms": [
"Carbanak" "Carbanak",
"Carbon Spider"
] ]
}, },
{ {