mirror of
https://github.com/cert-orangecyberdefense/cti
synced 2026-06-08 14:45:26 +00:00
Create readme
Green Nailao investigation, IOCs and Yara
This commit is contained in:
CERT Orange CyberDefense
committed by
GitHub
GitHub
parent
98185b7c7f
commit
bba9de6d0c
@@ -0,0 +1,6 @@
|
||||
Green Nailao is a malicious campaign that has been targeting at least between June and October 2024 European organizations, in particular in the healthcare sector.
|
||||
Tracked as Green Nailao (“Nailao” meaning “cheese” in Chinese – a topic our World Watch team holds in high regard), this campaign involves the ShadowPad malware as well as a previously undocumented ransomware payload dubbed NailaoLocker.
|
||||
Orange Cyberdefense does not associate this campaign with a known threat group. Nevertheless, we assess with medium confidence that the threat actors do align with typical Chinese intrusion sets.
|
||||
|
||||
Full research article:
|
||||
https://www.orangecyberdefense.com/global/blog/cert-news/meet-nailaolocker-a-ransomware-distributed-in-europe-by-shadowpad-and-plugx-backdoors#c137080
|
||||
Reference in New Issue
Block a user