From 60e4a486a7719c89c1f82dcd17423f2a64c91c78 Mon Sep 17 00:00:00 2001 From: Rony <49360849+r0ny123@users.noreply.github.com> Date: Thu, 11 Apr 2019 23:55:51 +0530 Subject: [PATCH 1/2] adding additional resources for APT36 --- clusters/threat-actor.json | 2 ++ 1 file changed, 2 insertions(+) diff --git a/clusters/threat-actor.json b/clusters/threat-actor.json index 2aab5fe..01ecbff 100644 --- a/clusters/threat-actor.json +++ b/clusters/threat-actor.json @@ -6661,6 +6661,8 @@ "meta": { "refs": [ "https://mkd-cirt.mk/wp-content/uploads/2018/08/20181009_3_1_M-Trends2018-May-2018-compressed.pdf" + "https://nciipc.gov.in/documents/NCIIPC_Newsletter_July18.pdf" + "https://aisa.org.au//PDF/AISA%20Sydney%20-%20Dec2016.pdf" ], "synonyms": [ "APT 36", From 2fc914b2f94bc4ad3804bd15923b8c04fdf840f1 Mon Sep 17 00:00:00 2001 From: Rony <49360849+r0ny123@users.noreply.github.com> Date: Fri, 12 Apr 2019 01:06:50 +0530 Subject: [PATCH 2/2] Update threat-actor.json --- clusters/threat-actor.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/clusters/threat-actor.json b/clusters/threat-actor.json index 01ecbff..db3d03b 100644 --- a/clusters/threat-actor.json +++ b/clusters/threat-actor.json @@ -6660,8 +6660,8 @@ "description": "FireEye details APT36 as a Pakistani espionage group that supports Pakistani military and diplomatic interests, targeting Indian military and government. Operations have been also observed in the US, Europe, and Central Asia. Uses social engineering emails, multiple open-source, and custom malware tools.", "meta": { "refs": [ - "https://mkd-cirt.mk/wp-content/uploads/2018/08/20181009_3_1_M-Trends2018-May-2018-compressed.pdf" - "https://nciipc.gov.in/documents/NCIIPC_Newsletter_July18.pdf" + "https://mkd-cirt.mk/wp-content/uploads/2018/08/20181009_3_1_M-Trends2018-May-2018-compressed.pdf", + "https://nciipc.gov.in/documents/NCIIPC_Newsletter_July18.pdf", "https://aisa.org.au//PDF/AISA%20Sydney%20-%20Dec2016.pdf" ], "synonyms": [