MISP/misp-galaxy
6
0
Fork 0
mirror of https://github.com/MISP/misp-galaxy.git synced 2024-11-22 14:57:18 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

[threat-actors] Add Metador

Browse source
This commit is contained in:
Mathieu Beligon 2023-11-03 19:02:12 +01:00
parent 0133c023d2
commit 44d7b3e88f
1 changed files with 11 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
clusters/threat-actor.json
View file

@ -12299,6 +12299,17 @@
},
"uuid": "2031ae01-e962-4861-a224-0934af6cdd3a",
"value": "YoroTrooper"
},
{
"description": "Metador primarily targets telecommunications, internet service providers, and universities in several countries in the Middle East and Africa. Metadors attack chains are designed to bypass native security solutions while deploying malware platforms directly into memory. SentinelLabs researchers discovered variants of two long-standing Windows malware platforms, and indications of an additional Linux implant.",
"meta": {
"refs": [
"https://www.sentinelone.com/labs/the-mystery-of-metador-unpicking-mafaldas-anti-analysis-techniques/",
"https://www.sentinelone.com/labs/the-mystery-of-metador-an-unattributed-threat-hiding-in-telcos-isps-and-universities/"
]
},
"uuid": "5d22315b-55ef-4d8a-86aa-00ba38057641",
"value": "Metador"
}
],
"version": 289