mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-26 16:57:18 +00:00
removing DePrimon
DePrimon is not a TA, added malfamily (waiting for approval) to Malpedia to better reflect that.
This commit is contained in:
parent
cf5c95b762
commit
5c6f3a036b
1 changed files with 0 additions and 15 deletions
|
@ -7996,21 +7996,6 @@
|
|||
"uuid": "947a450a-df6c-4c2e-807b-0da8ecea1d26",
|
||||
"value": "Attor"
|
||||
},
|
||||
{
|
||||
"description": "DePriMon is an unusually advanced downloader whose developers have put extra effort into setting up the architecture and crafting the critical components.",
|
||||
"meta": {
|
||||
"cfr-target-category": [
|
||||
"Private sector",
|
||||
"Finance"
|
||||
],
|
||||
"cfr-type-of-incident": "Espionage",
|
||||
"refs": [
|
||||
"https://www.welivesecurity.com/2019/11/21/deprimon-default-print-monitor-malicious-downloader"
|
||||
]
|
||||
},
|
||||
"uuid": "443faf38-ad93-4421-8a53-47ad84b195fa",
|
||||
"value": "DePriMon"
|
||||
},
|
||||
{
|
||||
"description": "According to 360 TIC the actor has carried out continuous cyber espionage activities since 2011 on key units and departments of the Chinese government, military industry, scientific research, and finance. The organization focuses on information related to the nuclear industry and scientific research. The targets were mainly concentrated in mainland China...[M]ore than 670 malware samples have been collected from the group, including more than 60 malicious plugins specifically for lateral movement; more than 40 C2 domain names and IPs related to the organization have also been discovered.",
|
||||
"meta": {
|
||||
|
|
Loading…
Reference in a new issue