MISP/misp-galaxy
6
0
Fork 0
mirror of https://github.com/MISP/misp-galaxy.git synced 2024-11-22 23:07:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

Update threat-actor.json

Browse source 
OilRig
This commit is contained in:
StefanKelm 2020-07-23 11:07:22 +02:00 committed by GitHub
parent c174f613c5
commit 86c54cbd8c
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
clusters/threat-actor.json
View file

@ -3828,8 +3828,8 @@
"cfr-type-of-incident": "Espionage",
"country": "IR",
"refs": [
"http://www.clearskysec.com/oilrig/",
"http://blog.morphisec.com/iranian-fileless-cyberattack-on-israel-word-vulnerability",
"https://www.clearskysec.com/oilrig/",
"https://blog.morphisec.com/iranian-fileless-cyberattack-on-israel-word-vulnerability",
"https://unit42.paloaltonetworks.com/unit42-striking-oil-closer-look-adversary-infrastructure/",
"https://unit42.paloaltonetworks.com/unit42-introducing-the-adversary-playbook-first-up-oilrig/",
"https://unit42.paloaltonetworks.com/unit42-oopsie-oilrig-uses-threedollars-deliver-new-trojan/",
@ -3856,6 +3856,7 @@
"https://www.clearskysec.com/oilrig/",
"https://securingtomorrow.mcafee.com/other-blogs/mcafee-labs/shamoon-attackers-employ-new-tool-kit-to-wipe-infected-systems/",
"https://attack.mitre.org/groups/G0049/",
"https://unit42.paloaltonetworks.com/oilrig-novel-c2-channel-steganography/",
"https://www.secureworks.com/research/threat-profiles/cobalt-gypsy"
],
"synonyms": [
@ -8311,5 +8312,5 @@
"value": "GALLIUM"
}
],
"version": 169
"version": 170
}