From 094f0e0684efa8857944aed6e70a29b33b5065d8 Mon Sep 17 00:00:00 2001 From: Alexandre Dulaunoy Date: Wed, 24 Apr 2019 12:58:49 +0200 Subject: [PATCH] chg: [tool] jq all the things --- clusters/tool.json | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/clusters/tool.json b/clusters/tool.json index f2df2d8..77d4645 100644 --- a/clusters/tool.json +++ b/clusters/tool.json @@ -7632,14 +7632,14 @@ "value": "Brushaloader" }, { - "uuid": "a9fc6d3d-09d5-45c3-a91e-e8c61ef37908", - "value": "Karkoff", + "description": "In addition to increased reports of threat activity, we have also discovered new evidence that the threat actors behind the DNSpionage campaign continue to change their tactics, likely in an attempt to improve the efficacy of their operations. In February, we discovered some changes to the actors' tactics, techniques and procedures (TTPs), including the use of a new reconnaissance phase that selectively chooses which targets to infect with malware. In April 2019, we also discovered the actors using a new malware, which we are calling Karkoff.", "meta": { "refs": [ "https://blog.talosintelligence.com/2019/04/dnspionage-brings-out-karkoff.html" ] }, - "description": "In addition to increased reports of threat activity, we have also discovered new evidence that the threat actors behind the DNSpionage campaign continue to change their tactics, likely in an attempt to improve the efficacy of their operations. In February, we discovered some changes to the actors' tactics, techniques and procedures (TTPs), including the use of a new reconnaissance phase that selectively chooses which targets to infect with malware. In April 2019, we also discovered the actors using a new malware, which we are calling Karkoff." + "uuid": "a9fc6d3d-09d5-45c3-a91e-e8c61ef37908", + "value": "Karkoff" } ], "version": 117