From 7f86aab62736536ea4e39d41fb517a19d845ba90 Mon Sep 17 00:00:00 2001
From: Alexandre Dulaunoy <a@foo.be>
Date: Mon, 1 Aug 2016 16:15:52 +0200
Subject: [PATCH] Admin338 updated

---
 elements/adversary-groups.json | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/elements/adversary-groups.json b/elements/adversary-groups.json
index c28b1f4..cabc704 100644
--- a/elements/adversary-groups.json
+++ b/elements/adversary-groups.json
@@ -526,7 +526,8 @@
     {
       "group": "Temper Panda",
       "refs": [
-        "https://www.fireeye.com/blog/threat-research/2013/10/know-your-enemy-tracking-a-rapidly-evolving-apt-actor.html"
+        "https://www.fireeye.com/blog/threat-research/2013/10/know-your-enemy-tracking-a-rapidly-evolving-apt-actor.html",
+        "https://www.fireeye.com/blog/threat-research/2015/11/china-based-threat.html"
       ],
       "country": "CN",
       "synonyms": [
@@ -534,7 +535,8 @@
         "Team338",
         "MAGNESIUM",
         "admin@338"
-      ]
+      ],
+      "description": "China-based cyber threat group. It has previously used newsworthy events as lures to deliver malware and has primarily targeted organizations involved in financial, economic, and trade policy, typically using publicly available RATs such as PoisonIvy, as well as some non-public backdoors."
     },
     {
       "group": "Pirate Panda",