MISP
/
misp-galaxy
mirror of https://github.com/MISP/misp-galaxy
2
0
Fork 0
Code Issues Releases Wiki Activity

Chinastrats added

pull/4/head
Alexandre Dulaunoy 2016-07-10 12:14:54 +02:00
parent 408f8c08cd
commit 1d0aba851d
1 changed files with 15 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
elements/adversary-groups.json
View File

@ -86,7 +86,8 @@
"Nitro",
"Stealth Falcon",
"Pacifier APT",
"HummingBad"
"HummingBad",
"Dropping Elephant"
],
"details": [
{
@ -840,10 +841,21 @@
{
"country": "CN",
"group": "HummingBad",
"description": " This group created a malware that takes over Android devices and generates $300,000 per month in fraudulent ad revenue. The group effectively controls an arsenal of over 85 million mobile devices around the world. With the potential to sell access to these devices to the highest bidder",
"description": "This group created a malware that takes over Android devices and generates $300,000 per month in fraudulent ad revenue. The group effectively controls an arsenal of over 85 million mobile devices around the world. With the potential to sell access to these devices to the highest bidder",
"refs": [
"http://blog.checkpoint.com/wp-content/uploads/2016/07/HummingBad-Research-report_FINAL-62916.pdf"
]
}
},
{
"group": "Dropping Elephant",
"description": "Dropping Elephant (also known as “Chinastrats” and “Patchwork“) is a relatively new threat actor that is targeting a variety of high profile diplomatic and economic targets using a custom set of attack tools. Its victims are all involved with Chinas foreign relations in some way, and are generally caught through spear-phishing or watering hole attacks.",
"refs": [
"https://securelist.com/blog/research/75328/the-dropping-elephant-actor/"
],
"synonyms": [
"Chinastrats",
"Patchwork"
]
}
]
}