From 2b54df56f9c544072f48f1c9dd027c402d982066 Mon Sep 17 00:00:00 2001 From: Rony Date: Wed, 20 Jul 2022 21:32:11 +0530 Subject: [PATCH] update --- clusters/threat-actor.json | 12 ++++++++---- 1 file changed, 8 insertions(+), 4 deletions(-) diff --git a/clusters/threat-actor.json b/clusters/threat-actor.json index edde14b..e217a23 100644 --- a/clusters/threat-actor.json +++ b/clusters/threat-actor.json @@ -3563,13 +3563,15 @@ "https://www.phnompenhpost.com/national/kingdom-targeted-new-malware", "https://attack.mitre.org/groups/G0017/", "https://attack.mitre.org/groups/G0002/", - "https://www.secureworks.com/research/threat-profiles/bronze-overbrook" + "https://www.secureworks.com/research/threat-profiles/bronze-overbrook", + "https://unit42.paloaltonetworks.com/atoms/shallowtaurus/" ], "synonyms": [ "Moafee", "BRONZE OVERBROOK", "G0017", - "G0002" + "G0002", + "Shallow Taurus" ] }, "related": [ @@ -8617,12 +8619,14 @@ "https://pastebin.com/6EDgCKxd", "https://github.com/fireeye/sunburst_countermeasures", "https://www.microsoft.com/security/blog/2021/03/04/goldmax-goldfinder-sibot-analyzing-nobelium-malware", - "https://www.fireeye.com/blog/threat-research/2021/03/sunshuttle-second-stage-backdoor-targeting-us-based-entity.html" + "https://www.fireeye.com/blog/threat-research/2021/03/sunshuttle-second-stage-backdoor-targeting-us-based-entity.html", + "https://unit42.paloaltonetworks.com/atoms/solarphoenix/" ], "synonyms": [ "DarkHalo", "StellarParticle", - "NOBELIUM" + "NOBELIUM", + "Solar Phoenix" ] }, "related": [