Status from Terror, Bingo and Astrum

This commit is contained in:
Kafeine 2018-08-30 17:08:37 +02:00 committed by GitHub
parent 67e9ef2719
commit afa3fb4cfd
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -17,7 +17,7 @@
"http://malware.dontneedcoffee.com/2014/09/astrum-ek.html", "http://malware.dontneedcoffee.com/2014/09/astrum-ek.html",
"http://www.welivesecurity.com/2016/12/06/readers-popular-websites-targeted-stealthy-stegano-exploit-kit-hiding-pixels-malicious-ads/" "http://www.welivesecurity.com/2016/12/06/readers-popular-websites-targeted-stealthy-stegano-exploit-kit-hiding-pixels-malicious-ads/"
], ],
"status": "Active", "status": "Retired - Last seen 2017-06-14",
"synonyms": [ "synonyms": [
"Stegano EK" "Stegano EK"
] ]
@ -28,7 +28,7 @@
{ {
"description": "Bingo EK is the name chosen by the defense for a Fiesta-ish EK first spotted in March 2017 and targetting at that times mostly Russia", "description": "Bingo EK is the name chosen by the defense for a Fiesta-ish EK first spotted in March 2017 and targetting at that times mostly Russia",
"meta": { "meta": {
"status": "Active" "status": "Retired - Last seen 2017-07-07"
}, },
"uuid": "9e864c01-3d9e-4b8d-811e-46471ff866e9", "uuid": "9e864c01-3d9e-4b8d-811e-46471ff866e9",
"value": "Bingo" "value": "Bingo"
@ -39,7 +39,7 @@
"refs": [ "refs": [
"https://www.trustwave.com/Resources/SpiderLabs-Blog/Terror-Exploit-Kit--More-like-Error-Exploit-Kit/" "https://www.trustwave.com/Resources/SpiderLabs-Blog/Terror-Exploit-Kit--More-like-Error-Exploit-Kit/"
], ],
"status": "Active", "status": "Retired - Last seen 2017-11-11",
"synonyms": [ "synonyms": [
"Blaze EK", "Blaze EK",
"Neptune EK" "Neptune EK"
@ -56,7 +56,7 @@
"http://blog.trendmicro.com/trendlabs-security-intelligence/pawn-storm-ramps-up-spear-phishing-before-zero-days-get-patched/", "http://blog.trendmicro.com/trendlabs-security-intelligence/pawn-storm-ramps-up-spear-phishing-before-zero-days-get-patched/",
"https://www.welivesecurity.com/2017/12/21/sednit-update-fancy-bear-spent-year/" "https://www.welivesecurity.com/2017/12/21/sednit-update-fancy-bear-spent-year/"
], ],
"status": "Active", "status": "Retired - Last seen ",
"synonyms": [ "synonyms": [
"Sednit RTF EK" "Sednit RTF EK"
] ]
@ -705,5 +705,5 @@
"value": "Unknown" "value": "Unknown"
} }
], ],
"version": 8 "version": 9
} }