mirror of
https://github.com/MISP/misp-galaxy.git
synced 2025-01-31 00:48:25 +00:00
chg[botnet]: Add HinataBot
Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
This commit is contained in:
Jürgen Löhel
parent
57f3e46273
commit
647fc025d7
1 changed files with 21 additions and 1 deletions
|
|
@ -1402,7 +1402,27 @@
|
||||||
},
|
},
|
||||||
"uuid": "b6919400-9b16-48ae-8379-fab26a506e32",
|
"uuid": "b6919400-9b16-48ae-8379-fab26a506e32",
|
||||||
"value": "KmsdBot"
|
"value": "KmsdBot"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"description": "Akamai researchers on the Security Intelligence Response Team (SIRT) have discovered a new Go-based, DDoS-focused botnet. The malware appears to have been named “Hinata” by the malware author after a character from the popular anime series, Naruto. We are calling it “HinataBot.” Looks like an attempt to rewrite Mirai in Go. The threat actors behind HinataBot originally distributed Mirai binaries.",
|
||||||
|
"meta": {
|
||||||
|
"refs": [
|
||||||
|
"https://www.akamai.com/blog/security-research/hinatabot-uncovering-new-golang-ddos-botnet",
|
||||||
|
"https://malpedia.caad.fkie.fraunhofer.de/details/elf.hinata_bot"
|
||||||
|
]
|
||||||
|
},
|
||||||
|
"related": [
|
||||||
|
{
|
||||||
|
"dest-uuid": "fcdfd4af-da35-49a8-9610-19be8a487185",
|
||||||
|
"tags": [
|
||||||
|
"estimative-language:likelihood-probability=\"likely\""
|
||||||
|
],
|
||||||
|
"type": "similar"
|
||||||
|
}
|
||||||
|
],
|
||||||
|
"uuid": "040f2e89-b8be-4150-9426-c30f75e858a2",
|
||||||
|
"value": "HinataBot"
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"version": 30
|
"version": 31
|
||||||
}
|
}
|
||||||
|
|
|
||||||
Loading…
Add table
Reference in a new issue