mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-22 23:07:19 +00:00
Update threat-actor.json
This commit is contained in:
parent
585a9714db
commit
ecf246a103
1 changed files with 13 additions and 0 deletions
|
@ -8967,6 +8967,19 @@
|
||||||
{
|
{
|
||||||
"description": "An actor mainly targeting Pakistan military targets, active since at least 2012. We have low confidence that this malware might be authored by an Indian company. To spread the malware, they use unique implementations to leverage the exploits of known vulnerabilities (such as CVE-2017-11882) and later deploy a Powershell payload in the final stages.",
|
"description": "An actor mainly targeting Pakistan military targets, active since at least 2012. We have low confidence that this malware might be authored by an Indian company. To spread the malware, they use unique implementations to leverage the exploits of known vulnerabilities (such as CVE-2017-11882) and later deploy a Powershell payload in the final stages.",
|
||||||
"meta": {
|
"meta": {
|
||||||
|
"country": "IN",
|
||||||
|
"cfr-suspected-state-sponsor": "India",
|
||||||
|
"cfr-suspected-victims": [
|
||||||
|
"China",
|
||||||
|
"Pakistan",
|
||||||
|
"Nepal",
|
||||||
|
"Afghanistan"
|
||||||
|
],
|
||||||
|
"cfr-target-category": [
|
||||||
|
"Government",
|
||||||
|
"Military",
|
||||||
|
"Private Sector"
|
||||||
|
],
|
||||||
"refs": [
|
"refs": [
|
||||||
"https://securelist.com/apt-trends-report-q1-2018/85280/",
|
"https://securelist.com/apt-trends-report-q1-2018/85280/",
|
||||||
"https://blog.trendmicro.com/trendlabs-security-intelligence/first-active-attack-exploiting-cve-2019-2215-found-on-google-play-linked-to-sidewinder-apt-group/",
|
"https://blog.trendmicro.com/trendlabs-security-intelligence/first-active-attack-exploiting-cve-2019-2215-found-on-google-play-linked-to-sidewinder-apt-group/",
|
||||||
|
|
Loading…
Reference in a new issue