MISP/misp-galaxy
6
0
Fork 0
mirror of https://github.com/MISP/misp-galaxy.git synced 2024-11-29 18:27:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

update 2 array

Browse source
This commit is contained in:
Thanat0s 2017-02-24 23:36:45 +01:00
parent 7265af6612
commit a29a5afbe8
2 changed files with 195 additions and 160 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

57
clusters/tool.json
View file

@ -14,7 +14,9 @@
"Korplug", "Korplug",
"Agent.dhwf" "Agent.dhwf"
], ],
"type" : "rat" "type": [
"rat"
]
} }
}, },
{ {
@ -24,7 +26,9 @@
"refs": [ "refs": [
"https://www.zscaler.com/pdf/whitepapers/msupdater_trojan_whitepaper.pdfx" "https://www.zscaler.com/pdf/whitepapers/msupdater_trojan_whitepaper.pdfx"
], ],
"type" : "rat" "type": [
"rat"
]
} }
}, },
{ {
@ -34,7 +38,9 @@
"refs": [ "refs": [
"https://github.com/AlessandroZ/LaZagne" "https://github.com/AlessandroZ/LaZagne"
], ],
"type" : "tool" "type": [
"tool"
]
} }
}, },
{ {
@ -49,7 +55,9 @@
"Backdoor.Win32.PoisonIvy", "Backdoor.Win32.PoisonIvy",
"Gen:Trojan.Heur.PT" "Gen:Trojan.Heur.PT"
], ],
"type" : "rat" "type": [
"rat"
]
} }
}, },
{ {
@ -59,7 +67,9 @@
"refs": [ "refs": [
"http://researchcenter.paloaltonetworks.com/2016/04/unit42-new-poison-ivy-rat-variant-targets-hong-kong-pro-democracy-activists/" "http://researchcenter.paloaltonetworks.com/2016/04/unit42-new-poison-ivy-rat-variant-targets-hong-kong-pro-democracy-activists/"
], ],
"type" :"rat" "type": [
"rat"
]
} }
}, },
{ {
@ -71,7 +81,9 @@
"synonyms": [ "synonyms": [
"Anchor Panda" "Anchor Panda"
], ],
"type": "rat" "type": [
"rat"
]
} }
}, },
{ {
@ -101,7 +113,9 @@
"Trojan.Win32.Staser.ytq", "Trojan.Win32.Staser.ytq",
"Win32/Zegost.BW" "Win32/Zegost.BW"
], ],
"type" : "rat" "type": [
"rat"
]
} }
}, },
{ {
@ -114,7 +128,10 @@
"synonyms": [ "synonyms": [
"Elise" "Elise"
], ],
"type" : "dropper, stealer" "type": [
"dropper",
"stealer"
]
} }
}, },
{ {
@ -127,7 +144,10 @@
"synonyms": [ "synonyms": [
"Laziok" "Laziok"
], ],
"type" : "stealer ,reco" "type": [
"stealer",
"reco"
]
} }
}, },
{ {
@ -143,7 +163,10 @@
"Bankosy", "Bankosy",
"Acecard" "Acecard"
], ],
"type" : "spyware, android" "type": [
"spyware",
"android"
]
} }
}, },
{ {
@ -161,7 +184,11 @@
"PWOPyExec", "PWOPyExec",
"PWOQuery" "PWOQuery"
], ],
"type" : "dropper, coinminer, spyware" "type": [
"dropper",
"miner",
"spyware"
]
} }
}, },
{ {
@ -175,7 +202,9 @@
"refs": [ "refs": [
"http://blog.trendmicro.com/trendlabs-security-intelligence/lost-door-rat-accessible-customizable-attack-tool/" "http://blog.trendmicro.com/trendlabs-security-intelligence/lost-door-rat-accessible-customizable-attack-tool/"
], ],
"type": "rat" "type": [
"rat"
]
} }
}, },
{ {
@ -188,7 +217,9 @@
"refs": [ "refs": [
"http://www.fidelissecurity.com/files/files/FTA_1009-njRAT_Uncovered_rev2.pdf" "http://www.fidelissecurity.com/files/files/FTA_1009-njRAT_Uncovered_rev2.pdf"
], ],
"type": "rat" "type": [
"rat"
]
} }
}, },
{ {

4
schema_clusters.json
View file

@ -74,7 +74,11 @@
"type": "string" "type": "string"
}, },
"type": { "type": {
"type": "array",
"uniqueItems": true,
"items": {
"type": "string" "type": "string"
}
}, },
"impact": { "impact": {
"type": "string" "type": "string"