mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-22 23:07:19 +00:00
Add ZEBROCY tool
This commit is contained in:
parent
5bcf34a953
commit
2893d715d6
1 changed files with 11 additions and 1 deletions
|
@ -5853,7 +5853,17 @@
|
|||
"type": "similar"
|
||||
}
|
||||
]
|
||||
},
|
||||
{
|
||||
"value": "ZEBROCY",
|
||||
"description": "ZEBROCY is a tool used by APT28, which has been observed since late 2015. The communications module used by ZEBROCY transmits using HTTP. The implant has key logging and file exfiltration functionality and utilises a file collection capability that identifies files with particular extensions.",
|
||||
"meta": {
|
||||
"refs": [
|
||||
"https://www.ncsc.gov.uk/alerts/indicators-compromise-malware-used-apt28"
|
||||
]
|
||||
},
|
||||
"uuid": "8a2ae47a-c7b2-11e8-b223-ab4d8f78f3ef"
|
||||
}
|
||||
],
|
||||
"version": 90
|
||||
"version": 91
|
||||
}
|
||||
|
|
Loading…
Reference in a new issue