Commit graph

217 commits

Author SHA1 Message Date
63b777fc9e
Merge pull request #271 from Delta-Sierra/master
Several updates
2018-10-01 21:51:11 +02:00
Deborah Servili
35582f7ed5
new threat actors & tools 2018-10-01 11:52:40 +02:00
2402c7d98f
chg: [tool] NOKKI added
ref: https://researchcenter.paloaltonetworks.com/2018/09/unit42-new-konni-malware-attacking-eurasia-southeast-asia/
2018-09-29 09:01:47 +02:00
Deborah Servili
97581d7185
jq 2018-09-28 11:20:38 +02:00
Deborah Servili
fbf21487cf
new clusters and informtion 2018-09-28 11:08:21 +02:00
Deborah Servili
29beb01dc3
add relationships on Mirai 2018-09-24 16:06:36 +02:00
Deborah Servili
0a724bee3d
merge 2018-09-19 16:01:46 +02:00
Deborah Servili
3f22dbd17d
add notpetya and update jadeRAT 2018-09-19 15:06:43 +02:00
4ae0ccd192
chg: [tool] Xbash added
ref: https://researchcenter.paloaltonetworks.com/2018/09/unit42-xbash-combines-botnet-ransomware-coinmining-worm-targets-linux-windows/
2018-09-19 07:03:56 +02:00
Deborah Servili
fd960bfc1b
Add magentocore malware 2018-09-18 23:10:33 +02:00
Deborah Servili
0843fdfb23
adding and updating clusters 2018-09-13 09:03:41 +02:00
Deborah Servili
cb5fa5e822
fix version 2018-09-10 14:21:14 +02:00
Deborah Servili
a81bbe288f
fix some relations 2018-09-10 12:27:40 +02:00
f8c5640613
chg: [tool] biscuit biscvt tool BISKVIT
ref: https://www.fortinet.com/blog/threat-research/russian-army-exhibition-decoy-leads-to-new-biskvit-malware.html
2018-08-21 10:48:47 +02:00
Christophe Vandeplas
88162aa44e chg: [mapping] Generated automatic mapping between clusters 2018-08-14 09:35:22 +02:00
Christophe Vandeplas
5478f0aa45 no change: dump files with sort_keys=True
This is needed to keep better track of the changes when other tools load and save the json files.
2018-08-13 17:06:29 +02:00
9059a85eed
chg: [tool] KEYMARBLE malware added
ref: https://www.us-cert.gov/ncas/analysis-reports/AR18-221A
2018-08-11 16:14:39 +02:00
Deborah Servili
27805ca768
add tools used by SamSam 2018-08-09 15:55:36 +02:00
Deborah Servili
e5b185deee
Merge branch 'master' into master 2018-08-03 16:11:16 +02:00
Deborah Servili
a9a71ef84c
more clusters 2018-08-03 15:58:54 +02:00
c232b3dd5a
chg: [tool] added based on Carbanak tooling description from Crowdstrike
ref: https://www.crowdstrike.com/blog/arrests-put-new-focus-on-carbon-spider-adversary-group/
2018-08-02 10:30:47 +02:00
4cf84858e3
chg: [tool] Bisonal malware added (new variant with encryption capabilities) 2018-07-31 15:26:11 +02:00
Deborah Servili
fb6b01cc95
Merge branch 'master' into master 2018-06-27 09:39:28 +02:00
Deborah Servili
b1aac6b35b cfr update -in progress + add clusters associated to RANCOR 2018-06-27 09:37:43 +02:00
raw-data
f649af8ba5 [ADD] x1 new entry in tool.json - Koadic 2018-06-25 15:59:30 +01:00
Deborah Servili
dcd159f8ed add olympic destroyer 2018-06-19 15:26:40 +02:00
Deborah Servili
cee83f677e more clusters 2018-06-18 14:30:51 +02:00
Deborah Servili
ab577afacd add ClipboardWalletHijacker 2018-06-18 09:47:03 +02:00
Deborah Servili
4ac23483b9 add some tools 2018-06-13 11:54:50 +02:00
Deborah Servili
cef7d02622 update version 2018-06-13 11:06:31 +02:00
Deborah Servili
c17a2aa7cc add some clusters 2018-06-13 10:39:11 +02:00
Deborah Servili
508bb081c8 add BabaYaga Malware 2018-06-08 15:54:30 +02:00
Deborah Servili
2b447585b6 add PLEAD 2018-06-08 10:18:41 +02:00
Deborah Servili
3e91466aea add Brambul worm 2018-06-06 15:07:30 +02:00
308774755c
add: Iron Backdoor 2018-06-03 18:39:37 +02:00
raw-data
8726e0542d [ADD] VPNFilter in tool.json cluster 2018-05-26 23:49:59 +01:00
Deborah Servili
3d5c697761 add Stalinlocker 2018-05-15 12:27:20 +02:00
Deborah Servili
5e0bd260d6 update some clusters 2018-05-09 16:12:02 +02:00
Deborah Servili
2b16c86687 add maikspy 2018-05-09 09:52:22 +02:00
Deborah Servili
d3f7f7b591 jq~ 2018-05-09 09:34:08 +02:00
Deborah Servili
394950379b add Kitty malware 2018-05-07 15:27:29 +02:00
Deborah Servili
83581c62b0 add Rubella Macro Builder 2018-05-03 15:38:06 +02:00
Deborah Servili
11f0963468 add Orangeworm, Kwampirs, Iron ransomware and Ton ransomware 2018-04-24 10:20:11 +02:00
StefanKelm
eff4ace398
Remove Chthonic since it's a duplicate (banker.json) 2018-04-16 15:34:59 +02:00
Deborah Servili
1a18ffb3eb add Rovnix 2018-04-11 16:30:58 +02:00
Deborah Servili
c773597155 add GoScanSSH tool 2018-04-10 15:56:27 +02:00
Deborah Servili
2bd3344eb6 add 2 -supposed- wipers 2018-04-05 11:51:13 +02:00
f4d7fe0166
add: SHARPKNOT 2018-03-29 16:31:05 +02:00
Raphaël Vinot
24fa5b8b1b Merge branch 'master' of github.com:MISP/misp-galaxy 2018-03-23 10:40:32 +01:00
Raphaël Vinot
f6695f5b56 fix: Duplicate UUID in tools 2018-03-23 10:40:21 +01:00