Commit graph

2938 commits

Author SHA1 Message Date
Jasper Lievisse Adriaanse
792490298e merge APT34 with OilRig
OilRig already has "APT 34" and "APT34" as synonyms. Additionally
MITRE has since combined them due to overlap in activity:
https://attack.mitre.org/groups/G0049/
2021-06-29 20:26:04 +02:00
a5d7d85dc8
Merge pull request #657 from jloehel/add_matanbuchus
[cluster][tool] Adds Matanbuchus
2021-06-22 07:23:20 +02:00
7a5218cc1c
Merge pull request #656 from jloehel/add_hackboss
[cluster][stealer] Adds HackBoss
2021-06-22 07:22:18 +02:00
Jürgen Löhel
254c201601
[cluster][tool] Adds Matanbuchus
+ threat actor: BelialDemon

Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
2021-06-21 18:04:28 -05:00
Jürgen Löhel
381973f5de
[cluster][stealer] Adds HackBoss
Fixes: #651

Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
2021-06-21 16:35:20 -05:00
Delta-Sierra
97976ba2e8 Merge https://github.com/MISP/misp-galaxy 2021-06-21 14:08:56 +02:00
141b85c084
Merge pull request #654 from nyx0/main
Added BackdoorDiplomacy and Gelsemium.
2021-06-11 21:03:37 +02:00
Thomas Dupuy
772c5145c1 Added BackdoorDiplomacy and Gelsemium. 2021-06-11 11:48:57 -04:00
4293503231
Merge pull request #653 from r0ny123/cybercrime
Adding CyberCrime actor profiles from Crowdstrike & Secureworks
2021-05-26 21:57:47 +02:00
Rony
9a723b6261
more ta544 references 2021-05-26 20:26:27 +05:30
Rony
db06e1fa4a
chg: [threat-actor] added cybercrime threat group profiles from Crowdstrike & Secureworks 2021-05-22 21:02:30 +05:30
a6d51e2247
Merge pull request #652 from danielplohmann/patch-9
adding Twisted Spider as alias for TA2101 (Maze)
2021-05-19 17:21:38 +02:00
Daniel Plohmann
433ea5cb45
Twisted Spider -> TWISTED SPIDER
fair point
2021-05-19 17:04:58 +02:00
Daniel Plohmann
9719122d27
adding Twisted Spider as alias for TA2101 (Maze) 2021-05-19 16:47:41 +02:00
a3cdbc1309
Merge pull request #650 from Still34/patches/alias-tick-1
Add alias for Tick
2021-05-07 23:23:38 +02:00
d4cfa4c0cd
Merge pull request #649 from Still34/patches/country-blacktech-1
Add country origin for BlackTech
2021-05-07 23:22:13 +02:00
Still Hsu
eb671f1e6a
Add Nian alias
Signed-off-by: Still Hsu <dev@stillu.cc>
2021-05-08 00:52:27 +08:00
Still Hsu
fe7c0dab07
Add country origin for BlackTech
Signed-off-by: Still Hsu <dev@stillu.cc>
2021-05-08 00:32:39 +08:00
Andras Iklody
e775512417
Merge pull request #648 from danielplohmann/patch-8
fixing broken/dead links
2021-05-04 20:41:42 +02:00
Daniel Plohmann
38b8bac51d
fixing broken/dead links 2021-05-04 20:15:17 +02:00
6f7d3d5c2b
chg: [ransomware] COLT (Compromise to Leak Time) added on Darkside and Pysa
"COLT – Compromise to Leak Time" - new meta colt-median/colt-average.

For reference: https://vulnerability.ch/2021/05/colt-compromise-to-leak-time/
2021-05-03 07:41:43 +02:00
7aaf25a424
new: [ransomware] Ragnarok added 2021-04-30 12:08:03 +02:00
94ec98d544
Merge pull request #646 from r0ny123/update
Updates to APT27 & Tick
2021-04-29 18:29:53 +02:00
Christophe Vandeplas
86ee7008b2 chg: [att&ck] bump to latest ATT&CK version from MITRE 2021-04-29 18:12:36 +02:00
211a4b5145 fix: [ransomware] Related key should be outside metas 2021-04-26 13:48:06 +02:00
Rony
3af87e2376 Merge branch 'update' of https://github.com/r0ny123/misp-galaxy into update 2021-04-26 16:25:12 +05:30
Rony
4ba2db0f3a FlatChestWare duplicate removed 2021-04-26 16:24:09 +05:30
ef9989dbe8
chg: [ransomware] duplicate removed 2021-04-26 12:06:03 +02:00
Delta-Sierra
92bd2e3ee9 remove more duplicates 2021-04-26 12:05:46 +02:00
847d3e8fa7
chg: [ransomware] duplicate removed 2021-04-26 12:01:01 +02:00
f3992ec5f1
chg: [ransomware] duplicates removed 2021-04-26 11:57:21 +02:00
f2703bd03e
chg: [ransomware] Flyper removed 2021-04-26 11:52:28 +02:00
Delta-Sierra
809860c945 version fix 2021-04-26 11:44:01 +02:00
87640506d5
Merge pull request #647 from Delta-Sierra/master
Remove duplicate
2021-04-26 11:43:59 +02:00
Delta-Sierra
3cae487e3d fix duplicates and add relations 2021-04-26 11:25:39 +02:00
Rony
d8d8221e26 FlatChestWare duplicate removed 2021-04-25 19:35:37 +05:30
Rony
faed812fc9 Merged STALKER PANDA to Tick 2021-04-25 19:12:20 +05:30
Rony
89b9c0c32c several updates to apt27 2021-04-25 16:53:36 +05:30
Delta-Sierra
0a05621f82 Merge https://github.com/MISP/misp-galaxy 2021-04-19 15:48:58 +02:00
Delta-Sierra
b138354fa5 Removing duplicate 2021-04-19 15:42:49 +02:00
28f6475cc5
chg: [ransomware] first duplicate removed 2021-04-19 15:13:18 +02:00
e7061f90d9
chg: [ransomware] remove duplicate "File-Locker" 2021-04-19 15:08:06 +02:00
ab13dd00f8
Merge pull request #645 from Delta-Sierra/master
Adding ransomware names [WIP 2/3]
2021-04-19 15:03:12 +02:00
Delta-Sierra
f5713a8d87 Removing unexpected line 2021-04-19 14:53:36 +02:00
Delta-Sierra
b7b4b356c3 Adding ransomware names [WIP 3] 2021-04-19 14:47:10 +02:00
Delta-Sierra
fdf1a6c112 Adding ransomware names [WIP 2] 2021-04-19 13:24:25 +02:00
ac19fe2f6e
Merge pull request #644 from danielplohmann/patch-7
adding Yanbian Gang as threat actor
2021-04-16 15:29:35 +02:00
Daniel Plohmann
6eb594a6b0
adding Yanbian Gang as threat actor 2021-04-16 15:12:45 +02:00
04b4fd70db
Merge pull request #643 from Delta-Sierra/master
Adding ransomware names[WIP]
2021-04-15 15:27:22 +02:00
Delta-Sierra
f3456a89c5 fix version 2021-04-15 15:08:11 +02:00