MISP/misp-galaxy
6
0
Fork 0
mirror of https://github.com/MISP/misp-galaxy.git synced 2024-11-22 23:07:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

add APT28's tools

Browse source
This commit is contained in:
Déborah Servili 2017-01-16 12:08:20 +01:00
parent 19406277d4
commit edea2d25ee
1 changed files with 76 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

79
clusters/tool.json
View file

@ -303,13 +303,86 @@
"value": "CORESHELL"
},
{
"value": "CHOPSTICK"
"value": "CHOPSTICK",
"description": "backdoor",
"meta": {
"synonyms": [
"Xagent",
"webhp",
"SPLM",
"(.v2 fysbis)"
],
"refs": [
"https://www2.fireeye.com/rs/848-DID-242/images/APT28-Center-of-Storm-2017.pdf"
]
}
},
{
"value": "SOURFACE"
"value": "EVILTOSS",
"description": "backdoor",
"meta": {
"synonyms": [
"Sedreco",
"AZZY",
"Xagent",
"ADVSTORESHELL",
"NETUI"
],
"refs": [
"https://www2.fireeye.com/rs/848-DID-242/images/APT28-Center-of-Storm-2017.pdf"
]
}
},
{
"value": "OLDBAIT"
"value": "GAMEFISH",
"description": "backdoor",
"meta": {
"synonyms": [
"Sednit",
"Seduploader",
"JHUHUGIT",
"Sofacy"
],
"refs": [
"https://www2.fireeye.com/rs/848-DID-242/images/APT28-Center-of-Storm-2017.pdf"
]
}
},
{
"value": "SOURFACE",
"description": "downloader - Older version of CORESHELL",
"meta": {
"synonyms": [
"Sofacy"
],
"refs": [
"https://www2.fireeye.com/rs/848-DID-242/images/APT28-Center-of-Storm-2017.pdf"
]
}
},
{
"value": "OLDBAIT",
"description": "credential harvester",
"meta": {
"synonyms": [
"Sasfis"
],
"refs": [
"https://www2.fireeye.com/rs/848-DID-242/images/APT28-Center-of-Storm-2017.pdf"
]
}
},
{
"value": "CORESHELL",
"description": "downloader - Newer version of SOURFACE",
"meta": {
"synonyms": [
"Sofacy"
],
"refs": [
"https://www2.fireeye.com/rs/848-DID-242/images/APT28-Center-of-Storm-2017.pdf"
]
}
},
{
"value": "Havex RAT",