mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-26 16:57:18 +00:00
[threat-actors] Add DEV-0569
This commit is contained in:
parent
d155f1e05d
commit
cf7cdcbc2b
1 changed files with 13 additions and 0 deletions
|
@ -13715,6 +13715,19 @@
|
||||||
},
|
},
|
||||||
"uuid": "9795249f-8954-4632-830f-7e1f0ebc1dd5",
|
"uuid": "9795249f-8954-4632-830f-7e1f0ebc1dd5",
|
||||||
"value": "UNC215"
|
"value": "UNC215"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"description": "DEV-0569, also known as Storm-0569, is a threat actor group that has been observed deploying the Royal ransomware. They utilize malicious ads and phishing techniques to distribute malware and gain initial access to networks. The group has been linked to the distribution of payloads such as Batloader and has forged relationships with other threat actors. DEV-0569 has targeted various sectors, including healthcare, communications, manufacturing, and education in the United States and Brazil.",
|
||||||
|
"meta": {
|
||||||
|
"refs": [
|
||||||
|
"https://www.microsoft.com/en-us/security/blog/2022/11/17/dev-0569-finds-new-ways-to-deliver-royal-ransomware-various-payloads/"
|
||||||
|
],
|
||||||
|
"synonyms": [
|
||||||
|
"Storm-0569"
|
||||||
|
]
|
||||||
|
},
|
||||||
|
"uuid": "e883458d-496f-4a94-b916-4b7b83e3d525",
|
||||||
|
"value": "DEV-0569"
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"version": 295
|
"version": 295
|
||||||
|
|
Loading…
Reference in a new issue