Commit Graph

68 Commits (c7f476450db09a928839f6734e27d91f293e10bd)

Author SHA1 Message Date
Deborah Servili 3294091600
add H-worm RAT 2019-03-18 16:24:55 +01:00
Deborah Servili cddfd5fcd1
TA505 threat actorand affiliates malwares 2019-01-11 09:53:08 +01:00
Deborah Servili ce61b2d2dd
update oilrig related clusters + others 2018-11-19 14:56:13 +01:00
Deborah Servili eb6f6a3f49
fix rat galaxy version 2018-11-16 16:40:23 +01:00
Deborah Servili 77b556d702
jq and add ref in tool galaxy -hit version 100- 2018-11-16 13:11:55 +01:00
Deborah Servili faa16879da
add TheOneSpy 2018-11-16 13:10:21 +01:00
Deborah Servili 14444e4321
add several tools and refs 2018-11-08 10:39:32 +01:00
Christophe Vandeplas 9dddc4427c jq 2018-10-19 10:23:09 +02:00
Christophe Vandeplas ddccac58c8 chg: categorization of galaxies
This allows relationships to be created.
2018-10-19 10:18:14 +02:00
Christophe Vandeplas 873bc873b4 Merge remote-tracking branch 'MISP/master' 2018-10-17 18:28:44 +02:00
Christophe Vandeplas 1e90cac717 fix: intrusion is an actor and not a tool 2018-10-17 18:17:33 +02:00
Deborah Servili 8d0c87c830
add several refs 2018-10-15 11:28:01 +02:00
Christophe Vandeplas f26a4f2806 fix: minor newline difference after jq_all_the 2018-10-12 12:31:29 +02:00
Christophe Vandeplas f14d616e22 chg: magical mapping with malpedia 2018-10-12 11:00:00 +02:00
Christophe Vandeplas 2fbd8ce485 jq sort keys
Allows automation to edit the files
2018-10-12 10:35:31 +02:00
Deborah Servili b45b4ce0b1
add refs 2018-10-04 12:01:26 +02:00
Deborah Servili 4d68b1c205
add NukeSped 2018-10-03 16:28:50 +02:00
Deborah Servili 69c5fc30e5
add remcos ref 2018-09-24 11:07:17 +02:00
Deborah Servili 3f22dbd17d
add notpetya and update jadeRAT 2018-09-19 15:06:43 +02:00
Deborah Servili a73424139f
fix versions 2018-09-12 14:26:44 +02:00
Deborah Servili f107563cad
add ref for operation Applejeus 2018-09-12 09:34:16 +02:00
Christophe Vandeplas 88162aa44e chg: [mapping] Generated automatic mapping between clusters 2018-08-14 09:35:22 +02:00
Christophe Vandeplas 5478f0aa45 no change: dump files with sort_keys=True
This is needed to keep better track of the changes when other tools load and save the json files.
2018-08-13 17:06:29 +02:00
Deborah Servili def23775e5
resolve merge conflict 2018-08-06 08:45:03 +02:00
Deborah Servili a9a71ef84c
more clusters 2018-08-03 15:58:54 +02:00
Alexandre Dulaunoy a0dfdd65ae
chg: [rat] Hallaj PRO Rat added
ref: https://securelist.com/attacks-on-industrial-enterprises-using-rms-and-teamviewer/87104/
misp-event: 5b63f5e4-bf24-4f46-8340-48fc02de0b81
2018-08-03 08:34:55 +02:00
raw-data b3dffeb8d4 [ADD] x2 new rat - Sisfader, SocketPlayer 2018-06-25 15:46:42 +01:00
Deborah Servili 3e10d0957c add Joanap RAT 2018-06-06 14:34:42 +02:00
raw-data ba6892408b [ADD] NavRAT 2018-06-01 15:09:22 +01:00
raw-data 0ba6233309 [ADD] RadRAT, ARS VBS Loader and FlawedAmmyy into rat.json cluster 2018-05-11 01:15:35 +01:00
Deborah Servili ba631f1b43 add spymaster pro as rat 2018-05-04 15:12:56 +02:00
Deborah Servili 979c784640 jq 2018-05-03 16:08:27 +02:00
Deborah Servili 434716df86 add GravityRAT 2018-05-03 14:35:20 +02:00
Daniel Roethlisberger 8c861848f8 Add Comnie RAT. 2018-04-17 15:49:05 +02:00
Deborah Servili 58e10c9af4 add RSAUtil and Coldroot 2018-03-07 13:00:07 +01:00
Deborah Servili ee3c858e4f Add TSCookie Malware and RAT 2018-03-06 13:28:28 +01:00
Deborah Servili b3574f880a jq ftw 2018-02-28 16:16:28 +01:00
Deborah Servili d88a4a44dc add uuid to every cluster 2018-02-28 15:37:37 +01:00
Deborah Servili 7d29f57d5b add CrossRat 2018-01-31 11:14:20 +01:00
Deborah Servili 130ad39d4c add macOS malwares 2018-01-11 15:19:18 +01:00
Deborah Servili 5f731a428d add source for NewCore RAT 2017-12-18 14:29:34 +01:00
Deborah Servili 695d580d3c add UBoatRAT 2017-11-29 10:09:39 +01:00
Deborah Servili a46903b8dd update ROKRAT 2017-11-28 14:01:06 +01:00
Deborah Servili e2dbd5a9a3 add MuddyWater + Update HIDDEN COBRA and update its tools 2017-11-17 15:41:44 +01:00
Deborah Servili 5ee2001391 update Falismus RAT 2017-11-08 11:34:55 +01:00
Deborah Servili 7246746bbe add htpRAT 2017-10-27 15:50:22 +02:00
Raphaël Vinot 72dbbb28fa Remove the executable flag from the json files, again 2017-10-25 12:29:16 -04:00
Alexandre Dulaunoy ce0f4d5e4a
SOCKET23 RAT added 2017-10-21 15:14:42 +02:00
Alexandre Dulaunoy 3860b1a78a
JadeRAT added 2017-10-21 13:53:40 +02:00
Deborah Servili fa5cb66a84 fix typo 2017-10-04 08:38:12 +02:00