mirror of
https://github.com/cert-orangecyberdefense/cti
synced 2026-06-10 15:31:23 +00:00
Create readme
Green Nailao investigation, IOCs and Yara
This commit is contained in:
CERT Orange CyberDefense
committed by
GitHub
GitHub
parent
98185b7c7f
commit
bba9de6d0c
@@ -0,0 +1,6 @@
|
|||||||
|
Green Nailao is a malicious campaign that has been targeting at least between June and October 2024 European organizations, in particular in the healthcare sector.
|
||||||
|
Tracked as Green Nailao (“Nailao” meaning “cheese” in Chinese – a topic our World Watch team holds in high regard), this campaign involves the ShadowPad malware as well as a previously undocumented ransomware payload dubbed NailaoLocker.
|
||||||
|
Orange Cyberdefense does not associate this campaign with a known threat group. Nevertheless, we assess with medium confidence that the threat actors do align with typical Chinese intrusion sets.
|
||||||
|
|
||||||
|
Full research article:
|
||||||
|
https://www.orangecyberdefense.com/global/blog/cert-news/meet-nailaolocker-a-ransomware-distributed-in-europe-by-shadowpad-and-plugx-backdoors#c137080
|
||||||
Reference in New Issue
Block a user