-
Notifications
You must be signed in to change notification settings - Fork 6
/
intrusion-set--18854f55-ac7c-4634-bd9a-352dd07613b7.json
68 lines (68 loc) · 2.12 KB
/
intrusion-set--18854f55-ac7c-4634-bd9a-352dd07613b7.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
{
"created_by_ref": "The MITRE Corporation",
"external_references": [
{
"url": "https://attack.mitre.org/groups/G0096",
"source_name": "mitre-attack",
"external_id": "G0096"
},
{
"source_name": "APT41",
"description": "(Citation: FireEye APT41 2019)"
},
{
"source_name": "FireEye APT41 Aug 2019",
"url": "https://content.fireeye.com/apt-41/rpt-apt41",
"description": "Fraser, N., et al. (2019, August 7). Double DragonAPT41, a dual espionage and cyber crime operation APT41. Retrieved September 23, 2019."
}
],
"name": "APT41",
"description": "[APT41] is a group that carries out Chinese state-sponsored espionage activity in addition to financially motivated activity. [APT41](https://attack.mitre.org/groups/G0096) has been active since as early as 2012. The group has been observed targeting healthcare, telecom, technology, and video game industries in 14 countries.(Citation: FireEye APT41 Aug 2019)",
"type": "intrusion-set",
"id": "intrusion-set--18854f55-ac7c-4634-bd9a-352dd07613b7",
"aliases": [
"APT41"
],
"modified": "2020-06-24T00:51:25.764Z",
"created": "2019-09-23T13:43:36.945Z",
"x_mitre_version": "1.1",
"attribution": "China",
"sophistication": "strategic",
"actor_type": "nation-state",
"sectors": [
"defense",
"healthcare",
"technology",
"telecommunications",
"entertainment",
"utilities"
],
"target_locations": [
"France",
"Hong Kong",
"India",
"Italy",
"Japan",
"Burma",
"Netherlands",
"Singapore",
"South Korea",
"South Africa",
"Switzerland",
"Thailand",
"Turkey",
"United Kingdom",
"United States"
],
"primary_motivation": [
"organizational gain"
],
"secondary_motivations": [
"financial gain"
],
"goals": [
"steal intellectual property",
"obtain state secrets"
],
"first_seen": "2012"
}