From afa3fb4cfd23b9be0438ae62462e7c04f845d344 Mon Sep 17 00:00:00 2001
From: Kafeine <Kafeine@users.noreply.github.com>
Date: Thu, 30 Aug 2018 17:08:37 +0200
Subject: [PATCH] Status from Terror, Bingo and Astrum

---
 clusters/exploit-kit.json | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/clusters/exploit-kit.json b/clusters/exploit-kit.json
index 69f08b3..322b352 100755
--- a/clusters/exploit-kit.json
+++ b/clusters/exploit-kit.json
@@ -17,7 +17,7 @@
           "http://malware.dontneedcoffee.com/2014/09/astrum-ek.html",
           "http://www.welivesecurity.com/2016/12/06/readers-popular-websites-targeted-stealthy-stegano-exploit-kit-hiding-pixels-malicious-ads/"
         ],
-        "status": "Active",
+        "status": "Retired - Last seen 2017-06-14",
         "synonyms": [
           "Stegano EK"
         ]
@@ -28,7 +28,7 @@
     {
       "description": "Bingo EK is the name chosen by the defense for a Fiesta-ish EK first spotted in March 2017 and targetting at that times mostly Russia",
       "meta": {
-        "status": "Active"
+        "status": "Retired - Last seen 2017-07-07"
       },
       "uuid": "9e864c01-3d9e-4b8d-811e-46471ff866e9",
       "value": "Bingo"
@@ -39,7 +39,7 @@
         "refs": [
           "https://www.trustwave.com/Resources/SpiderLabs-Blog/Terror-Exploit-Kit--More-like-Error-Exploit-Kit/"
         ],
-        "status": "Active",
+        "status": "Retired - Last seen 2017-11-11",
         "synonyms": [
           "Blaze EK",
           "Neptune EK"
@@ -56,7 +56,7 @@
           "http://blog.trendmicro.com/trendlabs-security-intelligence/pawn-storm-ramps-up-spear-phishing-before-zero-days-get-patched/",
           "https://www.welivesecurity.com/2017/12/21/sednit-update-fancy-bear-spent-year/"
         ],
-        "status": "Active",
+        "status": "Retired - Last seen ",
         "synonyms": [
           "Sednit RTF EK"
         ]
@@ -705,5 +705,5 @@
       "value": "Unknown"
     }
   ],
-  "version": 8
+  "version": 9
 }