MISP/misp-galaxy
6
0
Fork 0
mirror of https://github.com/MISP/misp-galaxy.git synced 2024-11-22 23:07:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

[threat-actors] Add SPIKEDWINE

Browse source
This commit is contained in:
Mathieu4141 2024-02-29 10:38:27 -08:00
parent 838f649766
commit b010a75426
1 changed files with 10 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
clusters/threat-actor.json
View file

@ -15269,6 +15269,16 @@
},
"uuid": "74268518-8dd9-4223-9f7f-54421463cdb3",
"value": "GoldFactory"
},
{
"description": "SPIKEDWINE is a threat actor targeting European officials with a new backdoor called WINELOADER. They use a bait PDF document posing as an invitation letter from the Ambassador of India to lure diplomats. The attack is characterized by advanced tactics, techniques, and procedures in the malware and command and control infrastructure. The motivation behind the attacks seems to be exploiting the geopolitical relations between India and European nations.",
"meta": {
"refs": [
"https://www.zscaler.com/blogs/security-research/european-diplomats-targeted-spikedwine-wineloader"
]
},
"uuid": "d3cda6b1-a5da-4afc-bee4-80ea2cf05e5e",
"value": "SPIKEDWINE"
}
],
"version": 302