MISP/misp-galaxy
6
0
Fork 0
mirror of https://github.com/MISP/misp-galaxy.git synced 2024-11-22 23:07:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

chg: [threat-actor] SideWinder APT group added

Browse source
This commit is contained in:
Alexandre Dulaunoy 2020-01-07 10:42:07 +01:00
parent 0296ca0c47
commit 5da0c7bd54
Signed by: adulau
GPG key ID: 09E2CD4944E6CBCD
1 changed files with 12 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
clusters/threat-actor.json
View file

@ -7861,7 +7861,18 @@
},
"uuid": "f9702059-97f4-4fc0-810b-3041b918f5d7",
"value": "BRONZE PRESIDENT"
},
{
"description": "An actor mainly targeting Pakistan military targets, active since at least 2012. We have low confidence that this malware might be authored by an Indian company. To spread the malware, they use unique implementations to leverage the exploits of known vulnerabilities (such as CVE-2017-11882) and later deploy a Powershell payload in the final stages.",
"meta": {
"refs": [
"https://securelist.com/apt-trends-report-q1-2018/85280/",
"https://blog.trendmicro.com/trendlabs-security-intelligence/first-active-attack-exploiting-cve-2019-2215-found-on-google-play-linked-to-sidewinder-apt-group/"
]
},
"uuid": "c4ce1174-9462-47e9-8038-794f40a184b3",
"value": "SideWinder"
}
],
"version": 148
"version": 149
}