MISP/misp-galaxy
6
0
Fork 0
mirror of https://github.com/MISP/misp-galaxy.git synced 2024-11-22 23:07:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

[threat-actors] Add RedStinger

Browse source
This commit is contained in:
Mathieu4141 2023-11-06 05:26:25 -08:00
parent 61922581e7
commit eb43d9faf2
1 changed files with 14 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

14
clusters/threat-actor.json
View file

@ -12356,6 +12356,20 @@
},
"uuid": "27e11cc5-1688-4aea-a98d-96e6c275d005",
"value": "UNC3890"
},
{
"description": "In October 2022, Kaspersky identified an active infection of government, agriculture and transportation organizations located in the Donetsk, Lugansk, and Crimea regions. Although the initial vector of compromise is unclear, the details of the next stage imply the use of spear phishing or similar methods. The victims navigated to a URL pointing to a ZIP archive hosted on a malicious web server.",
"meta": {
"aliases": [
"Bad Magic"
],
"refs": [
"https://www.malwarebytes.com/blog/threat-intelligence/2023/05/redstinger",
"https://securelist.com/bad-magic-apt/109087/"
]
},
"uuid": "b813c6a2-f8c7-4071-83bd-24c181ff2bd4",
"value": "RedStinger"
}
],
"version": 289