MISP/misp-galaxy
6
0
Fork 0
mirror of https://github.com/MISP/misp-galaxy.git synced 2024-11-22 23:07:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

[threat-actors] Add WildPressure

Browse source
This commit is contained in:
Mathieu Beligon 2023-11-29 11:28:37 -08:00
parent 9c02509a28
commit 31562e4701
1 changed files with 13 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
clusters/threat-actor.json
View file

@ -13589,6 +13589,19 @@
},
"uuid": "dc8a7137-f56e-41db-a500-920e69fa29f5",
"value": "WildCard"
},
{
"description": "WildPressure is a threat actor that targets industrial-related entities in the Middle East. They use a variety of programming languages, including C++, VBScript, and Python, to develop their malware. They have been observed using virtual private servers and compromised servers, particularly WordPress websites, in their infrastructure. While there are some minor similarities with other threat actors in the region, there is not enough evidence to make any attribution.",
"meta": {
"refs": [
"https://www.redpacketsecurity.com/it-threat-evolution-q3-2021/",
"https://securelist.com/wildpressure-targets-macos/103072/",
"https://www.redpacketsecurity.com/wildpressure-targets-industrial-related-entities-in-the-middle-east/",
"https://securelist.com/wildpressure-targets-industrial-in-the-middle-east/96360/"
]
},
"uuid": "89f5a5cb-514f-46db-8959-6bb9aa991e9f",
"value": "WildPressure"
}
],
"version": 295