MISP
/
misp-galaxy
mirror of https://github.com/MISP/misp-galaxy
2
0
Fork 0
Code Issues Releases Wiki Activity

Merge pull request #637 from sebdraven/main 

Add RedEcho Threat Actor
pull/639/head
Alexandre Dulaunoy 2021-03-30 13:59:44 +02:00 committed by GitHub
parent eba33a1c91 b082977b9f
commit 0fa78c6543
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 11 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
clusters/threat-actor.json
View File

@ -8501,6 +8501,17 @@
},
"uuid": "4f05d6c1-3fc1-4567-91cd-dd4637cc38b5",
"value": "HAFNIUM"
},
{
"description": "RedEcho: The group made heavy use of AXIOMATICASYMPTOTE — a term we use to track infrastructure that comprises ShadowPad C2s, which is shared between several Chinese threat activity groups",
"meta": {
"refs": [
"https://www.recordedfuture.com/redecho-targeting-indian-power-sector/",
"https://therecord.media/redecho-group-parks-domains-after-public-exposure/"
]
},
"uuid": "986fcc3f-5f36-4975-bf5f-c42524466bbd",
"value": "RedEcho"
}
],
"version": 199