{"id":13641804,"url":"https://github.com/RedDrip7/APT_Digital_Weapon","last_synced_at":"2025-04-20T11:32:34.165Z","repository":{"id":36545067,"uuid":"226013931","full_name":"RedDrip7/APT_Digital_Weapon","owner":"RedDrip7","description":"Indicators of compromise (IOCs) collected from public resources and categorized by Qi-AnXin.","archived":false,"fork":false,"pushed_at":"2024-08-29T10:22:11.000Z","size":2078,"stargazers_count":878,"open_issues_count":7,"forks_count":246,"subscribers_count":84,"default_branch":"master","last_synced_at":"2024-08-29T11:43:03.487Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/RedDrip7.png","metadata":{"files":{"readme":"README.MD","changelog":"NewsPenguin/NewsPenguin_hash.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2019-12-05T04:11:17.000Z","updated_at":"2024-08-29T10:22:14.000Z","dependencies_parsed_at":"2023-02-16T05:15:27.483Z","dependency_job_id":"6173bc2b-7d5e-4da2-ada4-e8e11f7d6f12","html_url":"https://github.com/RedDrip7/APT_Digital_Weapon","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/RedDrip7%2FAPT_Digital_Weapon","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/RedDrip7%2FAPT_Digital_Weapon/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/RedDrip7%2FAPT_Digital_Weapon/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/RedDrip7%2FAPT_Digital_Weapon/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/RedDrip7","download_url":"https://codeload.github.com/RedDrip7/APT_Digital_Weapon/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":223827745,"owners_count":17209837,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-08-02T01:01:24.596Z","updated_at":"2025-04-20T11:32:34.156Z","avatar_url":"https://github.com/RedDrip7.png","language":null,"readme":"Copyright © [@RedDrip](https://twitter.com/RedDrip7?s=20) (https://ti.qianxin.com/)\n   \n\u003cimg src=\"logo.png\" width = \"200\" height = \"200\"\u003e\n\nHere are indicators of compromise (IOCs) collected from public resources and our own investigations. Details include sample hash, file type, malware family, as well as first seen and file name from [VirusTotal](https://www.virustotal.com/) in format below:\n\n|Hash|Type|Family|First_Seen|Name|\n|:--|:--|:--|:--|:--|\n|[8e2b5b95980cf52e99acfa95f5e1570b](https://www.virustotal.com/gui/file/8e2b5b95980cf52e99acfa95f5e1570b)|Win32 DLL||2019-11-11 15:22:00|C:\\Users\\\u003cUSER\u003e\\AppData\\Local\\Temp\\~$doc-ad9b812a-88b2-454c-989f-7bb5fe98717e.ole|\n|[3c3b2cc9ff5d7030fb01496510ac75f2](https://www.virustotal.com/gui/file/3c3b2cc9ff5d7030fb01496510ac75f2)|DOC||2019-11-11 11:13:02|?-????2019?????????????????.doc|\n|[3a8c80d73f9beebd828c3aa172c747fa](https://www.virustotal.com/gui/file/3a8c80d73f9beebd828c3aa172c747fa)|RAR||2019-11-07 01:23:39|Noi dung don cau cuu.rar|\n|[82990e2c0432e579a00ab1f75da0dd65](https://www.virustotal.com/gui/file/82990e2c0432e579a00ab1f75da0dd65)|TXT||2019-10-26 11:05:08|lang.ps1|\n|[a87ada040f7250b59910345ee0b339b4](https://www.virustotal.com/gui/file/a87ada040f7250b59910345ee0b339b4)|RAR||2019-10-23 09:20:16|Thu moi.rar|\n|[dbdbcd220475678c4becdc57a9233e20](https://www.virustotal.com/gui/file/dbdbcd220475678c4becdc57a9233e20)|Win32 EXE||2019-10-18 07:28:19|AcroRd32.exe|\n|[e7de9a64266f07168def534852349957](https://www.virustotal.com/gui/file/e7de9a64266f07168def534852349957)|RAR|Kryptik|2019-09-16 00:18:57|Don khieu nai.rar|\n|[90c66c76095ef1ad5a79e63a544c1bba](https://www.virustotal.com/gui/file/90c66c76095ef1ad5a79e63a544c1bba)|Win32 DLL|Kryptik|2019-09-13 06:02:21|123456|\n\nWe will keep updating this project and hope this could help the security community to fight against malware and targeted attack.  \n    \n\nIf you find an error, please contact us at ti_support@qianxin.com and we’ll try to improve the IOCs.\n\n\n\n\n\n|Groupname|Total|Update|data|  \n|:--|:--|:--|:--|  \n|APT-Q-63|5|4|2025-03-21|  \n|APT28|751|4|2025-03-21|  \n|APT29|455|11|2025-03-21|  \n|APT33|157|34|2025-03-21|  \n|APT34|151|2|2025-03-21|  \n|APT35|1|1|2025-03-21|  \n|APT37|157|9|2025-03-21|  \n|Bloody Wolf|5|5|2025-03-21|  \n|C-Major|617|67|2025-03-21|  \n|Confucius|169|1|2025-03-21|  \n|Contagious Interview|48|4|2025-03-21|  \n|DarkGaboon|99|99|2025-03-21|  \n|Donot|438|10|2025-03-21|  \n|dragonforce|3|3|2025-03-21|  \n|Earth Minotaur|18|18|2025-03-21|  \n|EarthEstries|18|2|2025-03-21|  \n|EncryptHub|17|17|2025-03-21|  \n|FaceDuck Group|2480|13|2025-03-21|  \n|FIN7|550|2|2025-03-21|  \n|Gamaredon Group|547|27|2025-03-21|  \n|Ghostwriter|28|9|2025-03-21|  \n|Inception Framework|9|4|2025-03-21|  \n|InvisiMole|9|4|2025-03-21|  \n|Kimsuky|310|56|2025-03-21|  \n|KONNI|148|15|2025-03-21|  \n|Lazarus Group|1828|2|2025-03-21|  \n|MuddyWater|311|5|2025-03-21|  \n|Nobelium|19|18|2025-03-21|  \n|OceanLotus|1143|111|2025-03-21|  \n|Operation SideCopy|41|23|2025-03-21|  \n|PatchWork|1220|21|2025-03-21|  \n|ref7707|16|16|2025-03-21|  \n|Sandworm|54|49|2025-03-21|  \n|Sidewinder|143|32|2025-03-21|  \n|Turla|446|14|2025-03-21|  \n|UAC|82|23|2025-03-21|  \n|UAC-0006|30|30|2025-03-21|  \n|UAC-0063|9|9|2025-03-21|  \n|UAC-0099|29|6|2025-03-21|  \n","funding_links":[],"categories":["Others (1002)","Others","Blue Team"],"sub_categories":["IoCs"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FRedDrip7%2FAPT_Digital_Weapon","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FRedDrip7%2FAPT_Digital_Weapon","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FRedDrip7%2FAPT_Digital_Weapon/lists"}