mirror of https://github.com/MISP/misp-galaxy
chg: [threat-actor] SideWinder APT group added
parent
0296ca0c47
commit
5da0c7bd54
|
@ -7861,7 +7861,18 @@
|
|||
},
|
||||
"uuid": "f9702059-97f4-4fc0-810b-3041b918f5d7",
|
||||
"value": "BRONZE PRESIDENT"
|
||||
},
|
||||
{
|
||||
"description": "An actor mainly targeting Pakistan military targets, active since at least 2012. We have low confidence that this malware might be authored by an Indian company. To spread the malware, they use unique implementations to leverage the exploits of known vulnerabilities (such as CVE-2017-11882) and later deploy a Powershell payload in the final stages.",
|
||||
"meta": {
|
||||
"refs": [
|
||||
"https://securelist.com/apt-trends-report-q1-2018/85280/",
|
||||
"https://blog.trendmicro.com/trendlabs-security-intelligence/first-active-attack-exploiting-cve-2019-2215-found-on-google-play-linked-to-sidewinder-apt-group/"
|
||||
]
|
||||
},
|
||||
"uuid": "c4ce1174-9462-47e9-8038-794f40a184b3",
|
||||
"value": "SideWinder"
|
||||
}
|
||||
],
|
||||
"version": 148
|
||||
"version": 149
|
||||
}
|
||||
|
|
Loading…
Reference in New Issue