mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-30 02:37:17 +00:00
"the shoemaker's son always goes barefoot" Regin added
This commit is contained in:
parent
e4f4c9e191
commit
7ede54c76c
1 changed files with 7 additions and 2 deletions
|
@ -359,7 +359,12 @@
|
|||
"value": "FireMalv"
|
||||
},
|
||||
{
|
||||
"value": "Regin"
|
||||
"value": "Regin",
|
||||
"description": "Regin (also known as Prax or WarriorPride) is a sophisticated malware toolkit revealed by Kaspersky Lab, Symantec, and The Intercept in November 2014. The malware targets specific users of Microsoft Windows-based computers and has been linked to the US intelligence gathering agency NSA and its British counterpart, the GCHQ. The Intercept provided samples of Regin for download including malware discovered at Belgian telecommunications provider, Belgacom. Kaspersky Lab says it first became aware of Regin in spring 2012, but that some of the earliest samples date from 2003. The name Regin is first found on the VirusTotal website on 9 March 2011.",
|
||||
"meta": {
|
||||
"refs": ["https://en.wikipedia.org/wiki/Regin_(malware)"],
|
||||
"synonyms": ["Prax","WarriorPride"]
|
||||
}
|
||||
},
|
||||
{
|
||||
"value": "Duqu"
|
||||
|
@ -1156,7 +1161,7 @@
|
|||
"value": "Shamoon"
|
||||
}
|
||||
],
|
||||
"version": 12,
|
||||
"version": 13,
|
||||
"uuid": "0d821b68-9d82-4c6d-86a6-1071a9e0f79f",
|
||||
"description": "threat-actor-tools is an enumeration of tools used by adversaries. The list includes malware but also common software regularly used by the adversaries.",
|
||||
"author": [
|
||||
|
|
Loading…
Reference in a new issue