{
    "type": "bundle",
    "id": "bundle--c7bd8b1a-abd1-4784-8975-479ecf42cefc",
    "spec_version": "2.0",
    "objects": [
        {
            "modified": "2023-03-22T05:31:54.382Z",
            "name": "Sidewinder",
            "description": "[Sidewinder](https://attack.mitre.org/groups/G0121) is a suspected Indian threat actor group that has been active since at least 2012. They have been observed targeting government, military, and business entities throughout Asia, primarily focusing on Pakistan, China, Nepal, and Afghanistan.(Citation: ATT Sidewinder January 2021)(Citation: Securelist APT Trends April 2018)(Citation: Cyble Sidewinder September 2020)",
            "aliases": [
                "Sidewinder",
                "T-APT-04",
                "Rattlesnake"
            ],
            "x_mitre_deprecated": false,
            "x_mitre_version": "1.1",
            "x_mitre_contributors": [
                "Lacework Labs",
                "Daniyal Naeem, BT Security"
            ],
            "type": "intrusion-set",
            "id": "intrusion-set--3fc023b2-c5cc-481d-9c3e-70141ae1a87e",
            "created": "2021-01-27T15:57:11.183Z",
            "created_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5",
            "revoked": false,
            "external_references": [
                {
                    "source_name": "mitre-attack",
                    "url": "https://attack.mitre.org/groups/G0121",
                    "external_id": "G0121"
                },
                {
                    "source_name": "T-APT-04",
                    "description": "(Citation: Cyble Sidewinder September 2020)"
                },
                {
                    "source_name": "Rattlesnake",
                    "description": "(Citation: Cyble Sidewinder September 2020)"
                },
                {
                    "source_name": "Cyble Sidewinder September 2020",
                    "description": "Cyble. (2020, September 26). SideWinder APT Targets with futuristic Tactics and Techniques. Retrieved January 29, 2021.",
                    "url": "https://cybleinc.com/2020/09/26/sidewinder-apt-targets-with-futuristic-tactics-and-techniques/"
                },
                {
                    "source_name": "Securelist APT Trends April 2018",
                    "description": "Global Research and Analysis Team . (2018, April 12). APT Trends report Q1 2018. Retrieved January 27, 2021.",
                    "url": "https://securelist.com/apt-trends-report-q1-2018/85280/"
                },
                {
                    "source_name": "ATT Sidewinder January 2021",
                    "description": "Hegel, T. (2021, January 13). A Global Perspective of the SideWinder APT. Retrieved January 27, 2021.",
                    "url": "https://cdn-cybersecurity.att.com/docs/global-perspective-of-the-sidewinder-apt.pdf"
                }
            ],
            "object_marking_refs": [
                "marking-definition--fa42a846-8d90-4e51-bc29-71d5b4802168"
            ],
            "x_mitre_domains": [
                "enterprise-attack"
            ],
            "x_mitre_attack_spec_version": "3.1.0",
            "x_mitre_modified_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5"
        }
    ]
}