cti-python-stix2/stix2/test/stix2_data/intrusion-set/intrusion-set--a653431d-6a5e-4600-8ad3-609b5af57064/20170531213149412497.json

{
    "id": "bundle--7790ee4c-2d57-419a-bc9d-8805b5bb4118",
    "objects": [
        {
            "aliases": [
                "Deep Panda",
                "Shell Crew",
                "WebMasters",
                "KungFu Kittens",
                "PinkPanther",
                "Black Vine"
            ],
            "created": "2017-05-31T21:31:49.412497Z",
            "created_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5",
            "description": "Deep Panda is a suspected Chinese threat group known to target many industries, including government, defense, financial, and telecommunications.Deep Panda.Deep Panda also appears to be known as Black Vine based on the attribution of both group names to the Anthem intrusion.[[Citation: Symantec Black Vine]]",
            "external_references": [
                {
                    "external_id": "G0009",
                    "source_name": "mitre-attack",
                    "url": "https://attack.mitre.org/wiki/Group/G0009"
                },
                {
                    "description": "Alperovitch, D. (2014, July 7). Deep in Thought: Chinese Targeting of National Security Think Tanks. Retrieved November 12, 2014.",
                    "source_name": "Alperovitch 2014",
                    "url": "http://blog.crowdstrike.com/deep-thought-chinese-targeting-national-security-think-tanks/"
                },
                {
                    "description": "DiMaggio, J.. (2015, August 6). The Black Vine cyberespionage group. Retrieved January 26, 2016.",
                    "source_name": "Symantec Black Vine",
                    "url": "http://www.symantec.com/content/en/us/enterprise/media/security%20response/whitepapers/the-black-vine-cyberespionage-group.pdf"
                },
                {
                    "description": "RSA Incident Response. (2014, January). RSA Incident Response Emerging Threat Profile: Shell Crew. Retrieved January 14, 2016.",
                    "source_name": "RSA Shell Crew",
                    "url": "https://www.emc.com/collateral/white-papers/h12756-wp-shell-crew.pdf"
                },
                {
                    "description": "ThreatConnect Research Team. (2015, February 27). The Anthem Hack: All Roads Lead to China. Retrieved January 26, 2016.",
                    "source_name": "ThreatConnect Anthem",
                    "url": "https://www.threatconnect.com/the-anthem-hack-all-roads-lead-to-china/"
                }
            ],
            "id": "intrusion-set--a653431d-6a5e-4600-8ad3-609b5af57064",
            "modified": "2017-05-31T21:31:49.412497Z",
            "name": "Deep Panda",
            "object_marking_refs": [
                "marking-definition--fa42a846-8d90-4e51-bc29-71d5b4802168"
            ],
            "type": "intrusion-set"
        }
    ],
    "spec_version": "2.0",
    "type": "bundle"
}