mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-26 16:57:18 +00:00
[threat-actors] Add WildPressure
This commit is contained in:
parent
9c02509a28
commit
31562e4701
1 changed files with 13 additions and 0 deletions
|
@ -13589,6 +13589,19 @@
|
||||||
},
|
},
|
||||||
"uuid": "dc8a7137-f56e-41db-a500-920e69fa29f5",
|
"uuid": "dc8a7137-f56e-41db-a500-920e69fa29f5",
|
||||||
"value": "WildCard"
|
"value": "WildCard"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"description": "WildPressure is a threat actor that targets industrial-related entities in the Middle East. They use a variety of programming languages, including C++, VBScript, and Python, to develop their malware. They have been observed using virtual private servers and compromised servers, particularly WordPress websites, in their infrastructure. While there are some minor similarities with other threat actors in the region, there is not enough evidence to make any attribution.",
|
||||||
|
"meta": {
|
||||||
|
"refs": [
|
||||||
|
"https://www.redpacketsecurity.com/it-threat-evolution-q3-2021/",
|
||||||
|
"https://securelist.com/wildpressure-targets-macos/103072/",
|
||||||
|
"https://www.redpacketsecurity.com/wildpressure-targets-industrial-related-entities-in-the-middle-east/",
|
||||||
|
"https://securelist.com/wildpressure-targets-industrial-in-the-middle-east/96360/"
|
||||||
|
]
|
||||||
|
},
|
||||||
|
"uuid": "89f5a5cb-514f-46db-8959-6bb9aa991e9f",
|
||||||
|
"value": "WildPressure"
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"version": 295
|
"version": 295
|
||||||
|
|
Loading…
Reference in a new issue