Jürgen Löhel
|
254c201601
|
[cluster][tool] Adds Matanbuchus
+ threat actor: BelialDemon
Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
|
2021-06-21 18:04:28 -05:00 |
|
Thomas Dupuy
|
772c5145c1
|
Added BackdoorDiplomacy and Gelsemium.
|
2021-06-11 11:48:57 -04:00 |
|
Rony
|
9a723b6261
|
more ta544 references
|
2021-05-26 20:26:27 +05:30 |
|
Rony
|
db06e1fa4a
|
chg: [threat-actor] added cybercrime threat group profiles from Crowdstrike & Secureworks
|
2021-05-22 21:02:30 +05:30 |
|
Daniel Plohmann
|
433ea5cb45
|
Twisted Spider -> TWISTED SPIDER
fair point
|
2021-05-19 17:04:58 +02:00 |
|
Daniel Plohmann
|
9719122d27
|
adding Twisted Spider as alias for TA2101 (Maze)
|
2021-05-19 16:47:41 +02:00 |
|
|
a3cdbc1309
|
Merge pull request #650 from Still34/patches/alias-tick-1
Add alias for Tick
|
2021-05-07 23:23:38 +02:00 |
|
Still Hsu
|
eb671f1e6a
|
Add Nian alias
Signed-off-by: Still Hsu <dev@stillu.cc>
|
2021-05-08 00:52:27 +08:00 |
|
Still Hsu
|
fe7c0dab07
|
Add country origin for BlackTech
Signed-off-by: Still Hsu <dev@stillu.cc>
|
2021-05-08 00:32:39 +08:00 |
|
Daniel Plohmann
|
38b8bac51d
|
fixing broken/dead links
|
2021-05-04 20:15:17 +02:00 |
|
|
6f7d3d5c2b
|
chg: [ransomware] COLT (Compromise to Leak Time) added on Darkside and Pysa
"COLT – Compromise to Leak Time" - new meta colt-median/colt-average.
For reference: https://vulnerability.ch/2021/05/colt-compromise-to-leak-time/
|
2021-05-03 07:41:43 +02:00 |
|
|
7aaf25a424
|
new: [ransomware] Ragnarok added
|
2021-04-30 12:08:03 +02:00 |
|
|
94ec98d544
|
Merge pull request #646 from r0ny123/update
Updates to APT27 & Tick
|
2021-04-29 18:29:53 +02:00 |
|
Christophe Vandeplas
|
86ee7008b2
|
chg: [att&ck] bump to latest ATT&CK version from MITRE
|
2021-04-29 18:12:36 +02:00 |
|
|
211a4b5145
|
fix: [ransomware] Related key should be outside metas
|
2021-04-26 13:48:06 +02:00 |
|
Rony
|
4ba2db0f3a
|
FlatChestWare duplicate removed
|
2021-04-26 16:24:09 +05:30 |
|
|
ef9989dbe8
|
chg: [ransomware] duplicate removed
|
2021-04-26 12:06:03 +02:00 |
|
|
847d3e8fa7
|
chg: [ransomware] duplicate removed
|
2021-04-26 12:01:01 +02:00 |
|
|
f3992ec5f1
|
chg: [ransomware] duplicates removed
|
2021-04-26 11:57:21 +02:00 |
|
|
f2703bd03e
|
chg: [ransomware] Flyper removed
|
2021-04-26 11:52:28 +02:00 |
|
Delta-Sierra
|
3cae487e3d
|
fix duplicates and add relations
|
2021-04-26 11:25:39 +02:00 |
|
Rony
|
faed812fc9
|
Merged STALKER PANDA to Tick
|
2021-04-25 19:12:20 +05:30 |
|
Rony
|
89b9c0c32c
|
several updates to apt27
|
2021-04-25 16:53:36 +05:30 |
|
Delta-Sierra
|
0a05621f82
|
Merge https://github.com/MISP/misp-galaxy
|
2021-04-19 15:48:58 +02:00 |
|
Delta-Sierra
|
b138354fa5
|
Removing duplicate
|
2021-04-19 15:42:49 +02:00 |
|
|
28f6475cc5
|
chg: [ransomware] first duplicate removed
|
2021-04-19 15:13:18 +02:00 |
|
|
e7061f90d9
|
chg: [ransomware] remove duplicate "File-Locker"
|
2021-04-19 15:08:06 +02:00 |
|
|
ab13dd00f8
|
Merge pull request #645 from Delta-Sierra/master
Adding ransomware names [WIP 2/3]
|
2021-04-19 15:03:12 +02:00 |
|
Delta-Sierra
|
f5713a8d87
|
Removing unexpected line
|
2021-04-19 14:53:36 +02:00 |
|
Delta-Sierra
|
b7b4b356c3
|
Adding ransomware names [WIP 3]
|
2021-04-19 14:47:10 +02:00 |
|
Delta-Sierra
|
fdf1a6c112
|
Adding ransomware names [WIP 2]
|
2021-04-19 13:24:25 +02:00 |
|
Daniel Plohmann
|
6eb594a6b0
|
adding Yanbian Gang as threat actor
|
2021-04-16 15:12:45 +02:00 |
|
Delta-Sierra
|
f3456a89c5
|
fix version
|
2021-04-15 15:08:11 +02:00 |
|
Delta-Sierra
|
4bcd0492bd
|
Adding ransomwares WIP
|
2021-04-15 15:07:52 +02:00 |
|
Daniel Plohmann
|
2d8e9ea364
|
Symantec uses Palmerworm as alias for BlackTech
Adding Palmerworm as Symantec alias for BlackTech (with reference).
|
2021-03-31 22:35:12 +02:00 |
|
Thomas Dupuy
|
a8c62ddeda
|
Add Ghostwriter.
|
2021-03-31 09:42:40 -04:00 |
|
Rony
|
50f5d2ae4a
|
reverted changes made into 52ae97718d
|
2021-03-30 22:19:05 +05:30 |
|
sebdraven
|
ce8a9442eb
|
validation jsons
|
2021-03-30 13:12:21 +00:00 |
|
Sebdraven
|
52ae97718d
|
Update threat-actor.json
add a synonym to Haffnium
|
2021-03-30 15:11:09 +02:00 |
|
sebdraven
|
b082977b9f
|
validation ok
|
2021-03-30 10:22:35 +00:00 |
|
Sebdraven
|
4ed4cebcee
|
Update threat-actor.json
format json
|
2021-03-30 12:16:22 +02:00 |
|
Sebdraven
|
a62e3ba530
|
Update threat-actor.json
add redecho threat actor
|
2021-03-30 12:10:50 +02:00 |
|
Jakub Onderka
|
ca9608da6d
|
fix: Cryptominers type
|
2021-03-27 22:07:33 +01:00 |
|
|
26b9740e55
|
chg: [malpedia] jq all the file and removed ref duplicates
|
2021-03-13 11:00:39 +01:00 |
|
Jakob M
|
f02ce7e805
|
update to latest
Ref: https://malpedia.caad.fkie.fraunhofer.de/api/get/misp
|
2021-03-12 10:35:12 +01:00 |
|
Delta-Sierra
|
eff327b4fd
|
fix progress
|
2021-03-11 14:42:55 +01:00 |
|
Delta-Sierra
|
7c843ac5c2
|
fix merge & jq
|
2021-03-11 14:08:29 +01:00 |
|
Delta-Sierra
|
c37befc8a9
|
merge
|
2021-03-11 10:35:05 +01:00 |
|
|
855a12a408
|
chg: [clusters] fixing broken UUID fix #628
|
2021-03-11 09:54:50 +01:00 |
|
|
f6ed00233e
|
chg: [ransomware] fix the broken UUID fix #628
|
2021-03-11 09:52:25 +01:00 |
|