Merge pull request #885 from Mathieu4141/threat-actor/keksec-ba96cbce-c2bc-4b6b-9404-43ded4c97a19

[threat-actors] Add Keksec
This commit is contained in:
Alexandre Dulaunoy 2023-11-02 22:59:39 +01:00 committed by GitHub
commit dd43addc62
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -12092,6 +12092,19 @@
}, },
"uuid": "79d0da59-9400-40f6-b72b-6c6f47354d59", "uuid": "79d0da59-9400-40f6-b72b-6c6f47354d59",
"value": "Scarred Manticore" "value": "Scarred Manticore"
},
{
"description": "The threat group behind EnemyBot, Keksec, is well-resourced and has the ability to update and add new capabilities to its arsenal of malware on a daily basis (see below for more detail on Keksec)",
"meta": {
"refs": [
"https://www.fortinet.com/blog/threat-research/enemybot-a-look-into-keksecs-latest-ddos-botnet",
"https://www.cybersecurity-insiders.com/rapidly-evolving-iot-malware-enemybot-now-targeting-content-management-system-servers-and-android-devices/?utm_source=rss&utm_medium=rss&utm_campaign=rapidly-evolving-iot-malware-enemybot-now-targeting-content-management-system-servers-and-android-devices",
"https://blog.netlab.360.com/necro-upgrades-again-using-tor-dynamic-domain-dga-and-aiming-at-both-windows-linux/",
"https://blog.netlab.360.com/gafgtyt_tor-and-necro-are-on-the-move-again/"
]
},
"uuid": "b01f7ed8-db75-45c7-ac7b-60aa4a1f7f4b",
"value": "Keksec"
} }
], ],
"version": 288 "version": 288