mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-30 02:37:17 +00:00
Adding Underminer EK
This commit is contained in:
parent
afa3fb4cfd
commit
85130f264d
1 changed files with 15 additions and 0 deletions
|
@ -25,6 +25,21 @@
|
||||||
"uuid": "e9ca60cd-94fc-4a54-ac98-30e675a46b3e",
|
"uuid": "e9ca60cd-94fc-4a54-ac98-30e675a46b3e",
|
||||||
"value": "Astrum"
|
"value": "Astrum"
|
||||||
},
|
},
|
||||||
|
{
|
||||||
|
"description": "Underminer EK is an exploit kit that seems to be used privately against users in Asia. Functionalities: browser profiling and filtering, preventing of client revisits, URL randomization, and asymmetric encryption of payloads.",
|
||||||
|
"meta": {
|
||||||
|
"refs": [
|
||||||
|
"https://blog.trendmicro.com/trendlabs-security-intelligence/new-underminer-exploit-kit-delivers-bootkit-and-cryptocurrency-mining-malware-with-encrypted-tcp-tunnel/",
|
||||||
|
"http://bobao.360.cn/interref/detail/248.html"
|
||||||
|
],
|
||||||
|
"status": "Active",
|
||||||
|
"synonyms": [
|
||||||
|
"Underminer EK"
|
||||||
|
]
|
||||||
|
},
|
||||||
|
"uuid": "49492577-62dd-491d-95d4-92a47adbd98a",
|
||||||
|
"value": "Underminer"
|
||||||
|
},
|
||||||
{
|
{
|
||||||
"description": "Bingo EK is the name chosen by the defense for a Fiesta-ish EK first spotted in March 2017 and targetting at that times mostly Russia",
|
"description": "Bingo EK is the name chosen by the defense for a Fiesta-ish EK first spotted in March 2017 and targetting at that times mostly Russia",
|
||||||
"meta": {
|
"meta": {
|
||||||
|
|
Loading…
Reference in a new issue