mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-26 16:57:18 +00:00
[threat-actors] Add TaskMasters
This commit is contained in:
parent
2137a86586
commit
8c9ee3b293
1 changed files with 15 additions and 0 deletions
|
@ -16968,6 +16968,21 @@
|
||||||
},
|
},
|
||||||
"uuid": "439a65b0-c4b4-4a09-a9c9-2c70476574ab",
|
"uuid": "439a65b0-c4b4-4a09-a9c9-2c70476574ab",
|
||||||
"value": "SongXY"
|
"value": "SongXY"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"description": "TaskMasters is a state-sponsored Chinese APT that has been active since at least 2010, primarily targeting industrial, energy, and government sectors in Russia and the CIS. The group has been linked to the Webdav-O Trojan, which employs techniques to bypass network defenses by connecting to legitimate services. Investigations suggest that TaskMasters may have been involved in attacks against Russian federal executive authorities in 2020, potentially alongside another Chinese group, TA428. Additionally, the group has been associated with the BackDoor.RemShell.24 malware, indicating a diverse toolkit in their operations.",
|
||||||
|
"meta": {
|
||||||
|
"country": "CN",
|
||||||
|
"refs": [
|
||||||
|
"https://www.group-ib.com/blog/task/",
|
||||||
|
"https://decoded.avast.io/luigicamastra/apt-group-targeting-governmental-agencies-in-east-asia/?utm_source=rss&utm_medium=rss&utm_campaign=apt-group-targeting-governmental-agencies-in-east-asia"
|
||||||
|
],
|
||||||
|
"synonyms": [
|
||||||
|
"BlueTraveller"
|
||||||
|
]
|
||||||
|
},
|
||||||
|
"uuid": "f6134b6c-56f1-4eda-be0f-79411d627f19",
|
||||||
|
"value": "TaskMasters"
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"version": 316
|
"version": 316
|
||||||
|
|
Loading…
Reference in a new issue