2018-02-21 16:28:11 +01:00
{
2018-05-19 12:57:20 +02:00
"authors" : [
"MITRE"
] ,
2018-08-13 17:06:29 +02:00
"description" : "Name of ATT&CK Group" ,
"name" : "Mobile Attack - intrusion Set" ,
"source" : "https://github.com/mitre/cti" ,
"type" : "mitre-mobile-attack-intrusion-set" ,
"uuid" : "02ab4018-1708-11e8-8f9d-e735aabdfa53" ,
2018-05-19 12:57:20 +02:00
"values" : [
{
"description" : "APT28 is a threat group that has been attributed to the Russian government. (Citation: FireEye APT28) (Citation: SecureWorks TG-4127) (Citation: FireEye APT28) January 2017 (Citation: GRIZZLY STEPPE JAR) This group reportedly compromised the Democratic National Committee in April 2016. (Citation: Crowdstrike DNC June 2016)" ,
"meta" : {
2018-08-13 17:06:29 +02:00
"external_id" : "G0007" ,
"refs" : [
"https://attack.mitre.org/wiki/Group/G0007" ,
"https://www.crowdstrike.com/blog/bears-midst-intrusion-democratic-national-committee/" ,
"https://www.fireeye.com/content/dam/fireeye-www/global/en/current-threats/pdfs/rpt-apt28.pdf" ,
"https://www.secureworks.com/research/threat-group-4127-targets-hillary-clinton-presidential-campaign"
] ,
2018-05-19 12:57:20 +02:00
"synonyms" : [
"APT28" ,
"Sednit" ,
"Sofacy" ,
"Pawn Storm" ,
"Fancy Bear" ,
"STRONTIUM" ,
"Tsar Team" ,
"Threat Group-4127" ,
"TG-4127"
2018-08-13 17:06:29 +02:00
]
2018-05-19 12:57:20 +02:00
} ,
2018-08-14 09:32:24 +02:00
"related" : [
{
"dest-uuid" : "8ae43c46-57ef-47d5-a77a-eebb35628db2" ,
"tags" : [
"estimative-language:likelihood-probability=\"likely\""
] ,
"type" : "similar"
} ,
{
"dest-uuid" : "43cd8a09-9c80-48c8-9568-1992433af60a" ,
"tags" : [
"estimative-language:likelihood-probability=\"likely\""
] ,
"type" : "similar"
} ,
{
"dest-uuid" : "1de47f51-1f20-403b-a2e1-5eaabe275faa" ,
"tags" : [
"estimative-language:likelihood-probability=\"likely\""
] ,
"type" : "similar"
} ,
{
"dest-uuid" : "3948ce95-468e-4ce1-82b1-57439c6d6afd" ,
"tags" : [
"estimative-language:likelihood-probability=\"likely\""
] ,
"type" : "similar"
} ,
{
"dest-uuid" : "60c18d06-7b91-4742-bae3-647845cd9d81" ,
"tags" : [
"estimative-language:likelihood-probability=\"likely\""
] ,
"type" : "similar"
} ,
{
"dest-uuid" : "df36267b-7267-4c23-a7a1-cf94ef1b3729" ,
"tags" : [
"estimative-language:likelihood-probability=\"likely\""
] ,
"type" : "similar"
2018-10-12 11:00:00 +02:00
} ,
{
"dest-uuid" : "d26b5518-8d7f-41a6-b539-231e4962853e" ,
"tags" : [
"estimative-language:likelihood-probability=\"likely\""
] ,
"type" : "similar"
} ,
{
"dest-uuid" : "6bd20349-1231-4aaa-ba2a-f4b09d3b344c" ,
"tags" : [
"estimative-language:likelihood-probability=\"likely\""
] ,
"type" : "similar"
2018-08-14 09:32:24 +02:00
}
] ,
2018-08-13 17:06:29 +02:00
"uuid" : "bef4c620-0787-42a8-a96d-b7eb6e85917c" ,
"value" : "APT28 - G0007"
2018-05-19 12:57:20 +02:00
}
2018-08-13 17:06:29 +02:00
] ,
2018-10-12 11:00:00 +02:00
"version" : 5
2018-10-12 12:31:29 +02:00
}