2018.09.20.Poison_Trumpet_Vine_Operation

2018/2018.09.20.Poison_Trumpet_Vine_Operation/.python-version

@@ -0,0 +1 @@
+2.7.15

2018/2018.09.20.Poison_Trumpet_Vine_Operation/hash.txt

@@ -0,0 +1,84 @@
+03d762794a6fe96458d8228bb7561629
+0595f5005f237967dcfda517b26497d6
+07561810d818905851ce6ab2c1152871
+0e80fca91103fe46766dcb0763c6f6af
+0fb92524625fffda3425d08c94c014a1
+1374e999e1cda9e406c19dfe99830ffc
+1396cafb08ca09fac5d4bd2f12c65059
+168365197031ffcdbe65ab13d71b64ec
+1ab54f5f0b847a1aaaf00237d3a9f0ba
+1aca8cd40d9b84cab225d333b09f9ba5
+1dc61f30feeb60995174692e8d864312
+250c9ec3e77d1c6d999ce782c69fc21b
+2579b715ea1b76a1979c415b139fdee7
+26d7f7aa3135e99581119f40986a8ac3
+27f683baed7b02927a591cdc0c850743
+28e4545e9944eb53897ee9acf67b1969
+2a96042e605146ead06b2ee4835baec3
+2b5ddabf1c6fd8670137cade8b60a034
+2c405d608b600655196a4aa13bdb3790
+30866adc2976704bca0f051b5474a1ee
+31c81459c10d3f001d2ccef830239c16
+3484302809ac3df6ceec857cb4f75fb1
+36c23c569205d6586984a2f6f8c3a39e
+382132e601d7a4ae39a4e7d89457597f
+3e12538b6eaf19ca163a47ea599cfa9b
+41c7e09170037fafe95bb691df021a20
+45e983ae2fca8dacfdebe1b1277102c9
+4e57987d0897878eb2241f9d52303713
+517c81b6d05bf285d095e0fd91cb6f03
+5696bbee662d75f9be0e8a9ed8672755
+5e4c2fbcd0308a0b9af92bf87383604f
+5ee2958b130f9cda8f5f3fc1dc5249cf
+5f1a1ff9f272539904e25d300f2bfbcc
+611cefaee48c5f096fb644073247621c
+67d5f04fb0e00addc4085457f40900a2
+6a37ce66d3003ebf04d249ab049acb22
+6ca3a598492152eb08e36819ee56ab83
+7639ed0f0c0f5ac48ec9a548a82e2f50
+76782ecf9684595dbf86e5e37ba95cc8
+785b24a55dd41c94060efe8b39dc6d4c
+7c498b7ad4c12c38b1f4eb12044a9def
+7deeb1b3cce6528add4f9489ce1ec5d6
+81232f4c5c7810939b3486fa78d666c2
+81e1332d15b29e8a19d0e97459d0a1de
+8abb22771fd3ca34d6def30ba5c5081c
+95f0b0e942081b4952e6daef2e373967
+9b925250786571058dae5a7cbea71d28
+9bcb41da619c289fcfdf3131bbf2be21
+9f9a24b063018613f7f290cc057b8c40
+a73d3f749e42e2b614f89c4b3ce97fe1
+a807486cfe05b30a43c109fdb6a95993
+a8417d19c5e5183d45a38a2abf48e43e
+aa57085e5544d923f576e9f86adf9dc0
+acc598bf20fada204b5cfd4c3344f98a
+accb53eb0faebfca9f190815d143e04b
+adc3a4dfbdfe7640153ed0ea1c3cf125
+ae004a5d4f1829594d830956c55d6ae4
+b0be3c5fe298fb2b894394e808d5ffaf
+b244cced7c7f728bcc4d363f8260090d
+b301cd0e42803b0373438e9d4ca01421
+bd2272535c655aff1f1566b24a70ee97
+bd4b579f889bbe681b9d3ab11768ca07
+bfb9d13daf5a4232e5e45875e7e905d7
+c31549489bf0478ab4c367c563916ada
+c8755d732be4dc13eecd8e4c49cfab94
+c8fd2748a82e336f934963a79313aaa1
+ca663597299b1cecaf57c14c6579b23b
+cda1961d63aaee991ff97845705e08b8
+d12099237026ae7475c24b3dfb5d18bc
+d61c583eba31f2670ae688af070c87fc
+dde2c03d6168089affdca3b5ec41f661
+e07ca9f773bd772a41a6698c6fd6e551
+e2e2cd911e099b005e0b2a80a34cfaac
+e9a9c0485ee3e32e7db79247fee8bba6
+ec7e11cfca01af40f4d96cbbacb41fed
+eff88ecf0c3e719f584371e9150061d2
+f0c29f89ffdb0f3f03e663ef415b9e4e
+f1b6ed2624583c913392dcd7e3ea6ae1
+f27a9cd7df897cf8d2e540b6530dceb3
+f29abd84d6cdec8bb5ce8d51e85ddafc
+f3ed0632cadd2d6beffb9d33db4188ed
+fb427874a13f6ea5e0fd1a0aec6a095c
+fbd0f2c62b14b576f087e92f60e7d132
+fccb13c00df25d074a78f1eeeb04a0e7

README.md

@@ -16,6 +16,7 @@ Please fire issue to me if any lost APT/Malware events/campaigns.
 * [APT search](https://cse.google.com/cse/publicurl?cx=003248445720253387346:turlh5vi4xc)
 
 ## 2018
+* Sep 20 - [[360] (CN) Poison_Trumpet_Vine Operation](https://mp.weixin.qq.com/s/-H02Bm08qbOWhWtSYiXWnQ) | [Local](../../blob/master/2018/2018.09.20.Poison_Trumpet_Vine_Operation)
 * Sep 13 - [[Fireeye] APT10 Targeting Japanese Corporations Using Updated TTPs](https://www.fireeye.com/blog/threat-research/2018/09/apt10-targeting-japanese-corporations-using-updated-ttps.html) | [Local](../../blob/master/2018/2018.09.13.APT10_Targeting_Japanese)
 * Sep 10 - [[Kaspersky] LuckyMouse signs malicious NDISProxy driver with certificate of Chinese IT company](https://securelist.com/luckymouse-ndisproxy-driver/87914) | [Local](../../blob/master/2018/2018.09.07.Goblin_Panda_targets_Cambodia)
 * Sep 07 - [[Medium] Goblin Panda targets Cambodia sharing capacities with another Chinese group hackers Temp Periscope](https://medium.com/@Sebdraven/goblin-panda-targets-cambodia-sharing-capacities-with-another-chinese-group-hackers-temp-periscope-7871382ffcc0) | [Local](../../blob/master/2018/2018.08.28.CeidPageLock)