From 87ef0a400eeef7556547e883e65a92a7d7187a97 Mon Sep 17 00:00:00 2001
From: Sebastien Larinier <sebdraven@protonmail.com>
Date: Wed, 19 Apr 2023 15:42:14 +0200
Subject: [PATCH] Update threat-actor.json

---
 clusters/threat-actor.json | 22 ++++++++++------------
 1 file changed, 10 insertions(+), 12 deletions(-)

diff --git a/clusters/threat-actor.json b/clusters/threat-actor.json
index cd9e0c04..5fa711ee 100644
--- a/clusters/threat-actor.json
+++ b/clusters/threat-actor.json
@@ -720,16 +720,9 @@
     {
       "description": "APT30 is a threat group suspected to be associated with the Chinese government. While Naikon shares some characteristics with APT30, the two groups do not appear to be exact matches",
       "meta": {
-        "country": "CN",
         "attribution-confidence": "50",
         "cfr-suspected-state-sponsor": "China",
-        "refs":[
-          "https://attack.mitre.org/wiki/Group/G0013",
-          "https://www2.fireeye.com/rs/fireye/images/rpt-apt30.pdf",
-          "https://www.mandiant.com/resources/insights/apt-groups"
-        ],
-        
-        "cfr-suspected-victims":[
+        "cfr-suspected-victims": [
           "United States",
           "South Korea",
           "Saudi Arabia",
@@ -738,17 +731,22 @@
           "Malaysia",
           "India"
         ],
-        "cfr-target-category":[
+        "cfr-target-category": [
           "Government"
         ],
+        "country": "CN",
+        "refs": [
+          "https://attack.mitre.org/wiki/Group/G0013",
+          "https://www2.fireeye.com/rs/fireye/images/rpt-apt30.pdf",
+          "https://www.mandiant.com/resources/insights/apt-groups"
+        ],
         "synonyms": [
           "G0013"
         ]
-        
-
       },
       "related": [],
-      "value":"APT30"
+      "uuid": "d3881afe-f781-4c53-9f68-33487a119a59",
+      "value": "APT30"
     },
     {
       "description": "Lotus Blossom is a threat group that has targeted government and military organizations in Southeast Asia.",