more clusters

This commit is contained in:
Deborah Servili 2018-06-18 14:30:51 +02:00
parent d8c83cf2d6
commit cee83f677e
2 changed files with 40 additions and 2 deletions

View file

@ -9838,12 +9838,40 @@
] ]
}, },
"uuid": "fe42c270-7077-11e8-af82-d7bf7e6ab8a9" "uuid": "fe42c270-7077-11e8-af82-d7bf7e6ab8a9"
},
{
"value": "Donut",
"description": "S!Ri found a new ransomware called Donut that appends the .donut extension and uses the email donutmmm@tutanota.com.",
"meta": {
"refs": [
"https://twitter.com/siri_urz/status/1005438610806583296",
"https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-june-15th-2018-dbger-scarab-and-more/"
],
"extensions": [
".donut"
],
"ransomnotes": [
"https://www.bleepstatic.com/images/news/columns/week-in-ransomware/2018/june/15/DfQI_lnXUAAukGK[1].jpg"
]
},
"uuid": "e57e1f4a-72da-11e8-8c0d-af46e8f393d2"
},
{
"value": "NemeS1S Ransomware",
"description": "Ransomware as a Service",
"meta": {
"refs": [
"https://twitter.com/Damian1338B/status/1005411102660923392",
"https://www.bleepingcomputer.com/news/security/nemes1s-raas-is-padcrypt-ransomwares-affiliate-system/"
]
},
"uuid": "3ac0f41e-72e0-11e8-85a8-f7ae254ab629"
} }
], ],
"source": "Various", "source": "Various",
"uuid": "10cf658b-5d32-4c4b-bb32-61760a640372", "uuid": "10cf658b-5d32-4c4b-bb32-61760a640372",
"name": "Ransomware", "name": "Ransomware",
"version": 24, "version": 25,
"type": "ransomware", "type": "ransomware",
"description": "Ransomware galaxy based on https://docs.google.com/spreadsheets/d/1TWS238xacAto-fLKh1n5uTsdijWdCEsGIM0Y0Hvmc5g/pubhtml and http://pastebin.com/raw/GHgpWjar" "description": "Ransomware galaxy based on https://docs.google.com/spreadsheets/d/1TWS238xacAto-fLKh1n5uTsdijWdCEsGIM0Y0Hvmc5g/pubhtml and http://pastebin.com/raw/GHgpWjar"
} }

View file

@ -2,7 +2,7 @@
"uuid": "0d821b68-9d82-4c6d-86a6-1071a9e0f79f", "uuid": "0d821b68-9d82-4c6d-86a6-1071a9e0f79f",
"name": "Tool", "name": "Tool",
"source": "MISP Project", "source": "MISP Project",
"version": 75, "version": 76,
"values": [ "values": [
{ {
"meta": { "meta": {
@ -4323,6 +4323,16 @@
"https://blog.360totalsecurity.com/en/new-cryptominer-hijacks-your-bitcoin-transaction-over-300000-computers-have-been-attacked/" "https://blog.360totalsecurity.com/en/new-cryptominer-hijacks-your-bitcoin-transaction-over-300000-computers-have-been-attacked/"
] ]
} }
},
{
"value": "TYPEFRAME",
"description": "Trojan malware",
"meta": {
"refs": [
"https://www.us-cert.gov/ncas/analysis-reports/AR18-165A"
]
},
"uuid": "8981aaca-72dc-11e8-8649-838c1b2613c5"
} }
], ],
"authors": [ "authors": [