DragonOKDragonOK

Also known as: DragonOK · Moafee · BRONZE OVERBROOK · G0017 · G0002 · Shallow Taurus

Known aliases
6

Profile

Threat group that has targeted Japanese organizations with phishing emails. Due to overlapping TTPs, including similar custom tools, DragonOK is thought to have a direct or indirect relationship with the threat group Moafee. 2223 It is known to use a variety of malware, including Sysget/HelloBridge, PlugX, PoisonIvy, FormerFirstRat, NFlog, and NewCT.

Aliases· 6

DragonOKMoafeeBRONZE OVERBROOKShallow Taurus
G0017G0002

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
DragonBreath
Group
Moafee
Actor
DragonSpark
Actor
DragonRank
Actor
Naikon
Actor
Aoqin Dragon
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.