{ "Event": { "analysis": "2", "date": "2023-04-19", "extends_uuid": "", "info": "[Threat Intel] Hacktivist Group DragonForce Malaysia Releases Windows LPE Exploit, Discloses Plans to Evolve into a Ransomware Group", "protected": false, "publish_timestamp": "1780039993", "published": true, "threat_level_id": "2", "timestamp": "1772902010", "uuid": "10a17a4d-4fa1-4cd5-9540-7990668cac1c", "Orgc": { "name": "Rectifyq", "uuid": "cd9bd516-61fa-476b-980f-2f8de03992d4" }, "Tag": [ { "colour": "#ffffff", "local": false, "name": "tlp:clear", "relationship_type": "" }, { "colour": "#004646", "local": false, "name": "type:OSINT", "relationship_type": "" }, { "colour": "#49a260", "local": false, "name": "rectifyq:category=\"threat\"", "relationship_type": "" }, { "colour": "#10003d", "local": false, "name": "rectifyq:sub-category=\"TA-profile\"", "relationship_type": "" }, { "colour": "#f1dfed", "local": false, "name": "rectifyq:TA-category=\"Hacktivist\"", "relationship_type": "" }, { "colour": "#d92121", "local": false, "name": "rectifyq:target=\"targeted\"", "relationship_type": "" }, { "colour": "#dd2e44", "local": false, "name": "rectifyq:MY-relevancy=\"relevant\"", "relationship_type": "" }, { "colour": "#b94b1d", "local": false, "name": "rectifyq:mitre-att&ck=\"none-from-src\"", "relationship_type": "" }, { "colour": "#0088cc", "local": false, "name": "misp-galaxy:country=\"malaysia\"", "relationship_type": "" }, { "colour": "#0088cc", "local": false, "name": "misp-galaxy:threat-actor=\"16284eb9-b17b-49ec-b51c-f036b698bc60\"", "relationship_type": "" } ], "Attribute": [ { "category": "External analysis", "comment": "", "deleted": false, "disable_correlation": false, "timestamp": "1740757338", "to_ids": false, "type": "link", "uuid": "e568fb0c-4bc9-4321-bd83-0c2076578d4d", "value": "https://www.cloudsek.com/threatintelligence/hacktivist-group-dragonforce-malaysia-releases-windows-lpe-exploit-discloses-plans-to-evolve-into-a-ransomware-group" }, { "category": "Attribution", "comment": "", "deleted": false, "disable_correlation": false, "timestamp": "1740757348", "to_ids": false, "type": "threat-actor", "uuid": "8928e5df-12c2-43da-9299-83decc8153df", "value": "DragonForce Malaysia" }, { "category": "Network activity", "comment": "DragonForce\u2019s Official Communication Channel", "deleted": false, "disable_correlation": false, "timestamp": "1740757367", "to_ids": true, "type": "url", "uuid": "3587b765-8008-4c3b-98f7-c6195ca27a16", "value": "https://dragonforce.io" }, { "category": "Network activity", "comment": "DragonForce\u2019s Official Communication Channel", "deleted": false, "disable_correlation": false, "timestamp": "1740757367", "to_ids": true, "type": "url", "uuid": "caf6ca78-bfcc-44e0-b31b-289478f9b62a", "value": "https://radio.dragonforce.io" }, { "category": "Network activity", "comment": "DragonForce\u2019s Official Communication Channel", "deleted": false, "disable_correlation": false, "timestamp": "1740757367", "to_ids": true, "type": "url", "uuid": "2925758f-ae79-441c-a671-556c71ef3722", "value": "https://fb.me/dragonforcedotio" }, { "category": "Network activity", "comment": "DragonForce\u2019s Official Communication Channel", "deleted": false, "disable_correlation": false, "timestamp": "1740757367", "to_ids": true, "type": "url", "uuid": "06719049-e2a3-40c0-b3d7-e5f8051cbdba", "value": "https://t.me/dragonforceio" }, { "category": "Network activity", "comment": "DragonForce\u2019s Official Communication Channel", "deleted": false, "disable_correlation": false, "timestamp": "1740757367", "to_ids": true, "type": "url", "uuid": "33f6a2e5-5747-43db-bb12-90c8951e818d", "value": "https://twitter.com/dragonforceio" }, { "category": "Network activity", "comment": "DragonForce\u2019s Official Communication Channel", "deleted": false, "disable_correlation": false, "timestamp": "1740757367", "to_ids": true, "type": "url", "uuid": "0bd835a7-d9f4-4937-b888-1600f3a48927", "value": "https://instagram.com/dragonforceio" }, { "category": "Network activity", "comment": "DragonForce\u2019s Official Communication Channel", "deleted": false, "disable_correlation": false, "timestamp": "1740757367", "to_ids": true, "type": "url", "uuid": "ed1961ac-83ae-4655-80d0-00b1279a8363", "value": "https://www.youtube.com/channel/UC9GycRXuy7-WMULPBkBp4Bw" }, { "category": "External analysis", "comment": "", "deleted": false, "disable_correlation": false, "timestamp": "1740757385", "to_ids": false, "type": "vulnerability", "uuid": "8b654aaa-1cd3-4f86-b7b6-40d65065341c", "value": "CVE-2022-26134" }, { "category": "Attribution", "comment": "", "deleted": false, "disable_correlation": false, "timestamp": "1740757670", "to_ids": false, "type": "other", "uuid": "592d9bc7-83eb-4cae-8769-aa91d5db7d4a", "value": "impossible1337" } ] } }