khoicrtp
/

test_scratch

Model card Files Files and versions Community

test_scratch / cti-ATT-CK-v13.1 /enterprise-attack /malware /malware--0b639373-5f03-430e-b8f9-2fe8c8faad8e.json

khoicrtp

updated

5ceca98 over 1 year ago

2.28 kB

	{
	"type": "bundle",
	"id": "bundle--285cf0c0-c1cc-4295-89f9-833810bc89e2",
	"spec_version": "2.0",
	"objects": [
	{
	"modified": "2022-10-10T19:58:31.652Z",
	"name": "Chinoxy",
	"description": "[Chinoxy](https://attack.mitre.org/software/S1041) is a backdoor that has been used since at least November 2018, during the [FunnyDream](https://attack.mitre.org/campaigns/C0007) campaign, to gain persistence and drop additional payloads. According to security researchers, [Chinoxy](https://attack.mitre.org/software/S1041) has been used by Chinese-speaking threat actors.(Citation: Bitdefender FunnyDream Campaign November 2020)",
	"x_mitre_platforms": [
	"Windows"
	],
	"x_mitre_deprecated": false,
	"x_mitre_domains": [
	"enterprise-attack"
	],
	"x_mitre_version": "1.0",
	"x_mitre_aliases": [
	"Chinoxy"
	],
	"type": "malware",
	"id": "malware--0b639373-5f03-430e-b8f9-2fe8c8faad8e",
	"created": "2022-09-21T16:46:22.726Z",
	"created_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5",
	"revoked": false,
	"external_references": [
	{
	"source_name": "mitre-attack",
	"url": "https://attack.mitre.org/software/S1041",
	"external_id": "S1041"
	},
	{
	"source_name": "Bitdefender FunnyDream Campaign November 2020",
	"description": "Vrabie, V. (2020, November). Dissecting a Chinese APT Targeting South Eastern Asian Government Institutions. Retrieved September 19, 2022.",
	"url": "https://www.bitdefender.com/files/News/CaseStudies/study/379/Bitdefender-Whitepaper-Chinese-APT.pdf"
	}
	],
	"object_marking_refs": [
	"marking-definition--fa42a846-8d90-4e51-bc29-71d5b4802168"
	],
	"labels": [
	"malware"
	],
	"x_mitre_attack_spec_version": "2.1.0",
	"x_mitre_modified_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5"
	}
	]
	}