Mirrors/keyboardcrunch-sentinelone-queries
1
0
Fork 0
mirror of https://github.com/keyboardcrunch/sentinelone-queries synced 2026-06-10 18:01:20 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update sunburst_campaign.yml

Browse Source
This commit is contained in:
keyboardcrunch
2020-12-18 13:43:47 -06:00
committed by GitHub
parent 710d621de0
commit ce658f9e1c
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
queries/apt/sunburst_campaign.yml
+1
View File
@@ -12,6 +12,7 @@ query: DstIp In ("13.59.205.66","54.193.127.66","54.215.192.52","34.203.203.23",
false_positives: false_positives:
tags: tags:
- UNC2452 - UNC2452
- DarkHalo
- SolarWinds - SolarWinds
references: references:
- https://www.fireeye.com/blog/threat-research/2020/12/evasive-attacker-leverages-solarwinds-supply-chain-compromises-with-sunburst-backdoor.html - https://www.fireeye.com/blog/threat-research/2020/12/evasive-attacker-leverages-solarwinds-supply-chain-compromises-with-sunburst-backdoor.html