MISP/misp-galaxy
6
0
Fork 0
mirror of https://github.com/MISP/misp-galaxy.git synced 2024-11-22 23:07:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

adding APT-C-12

Browse source
This commit is contained in:
Daniel Plohmann 2020-02-13 17:44:45 +01:00 committed by GitHub
parent 4f6e96d028
commit e481e9bb50
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 26 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

27
clusters/threat-actor.json
View file

@ -7923,7 +7923,32 @@
},
"uuid": "443faf38-ad93-4421-8a53-47ad84b195fa",
"value": "DePriMon"
},
{
"description": "According to 360 TIC the actor has carried out continuous cyber espionage activities since 2011 on key units and departments of the Chinese government, military industry, scientific research, and finance. The organization focuses on information related to the nuclear industry and scientific research. The targets were mainly concentrated in mainland China...[M]ore than 670 malware samples have been collected from the group, including more than 60 malicious plugins specifically for lateral movement; more than 40 C2 domain names and IPs related to the organization have also been discovered.",
"meta": {
"cfr-target-category": [
"Private sector",
"Government",
"Military",
"Scientific Research",
"Finance"
],
"cfr-type-of-incident": "Espionage",
"refs": [
"https://mp.weixin.qq.com/s/S-hiGFNC6WXGrkjytAVbpA",
"https://bitofhex.com/2020/02/10/sapphire-mushroom-lnk-files/"
],
"suspected-victims": "China",
"synonyms": [
"Sapphire Mushroom",
"Blue Mushroom",
"NuclearCrisis"
]
},
"uuid": "53771ca5-f1cb-47b6-a92a-53a485307cf7",
"value": "APT-C-12"
}
],
"version": 153
"version": 154
}