{
	"id": "ebb05ceb-a088-4ff4-874c-bb5fafd4d33a",
	"created_at": "2026-04-06T00:11:44.918359Z",
	"updated_at": "2026-04-10T13:11:54.055783Z",
	"deleted_at": null,
	"sha1_hash": "a9aa3edbac9bfc195484d559c912779352c7bcfc",
	"title": "Remove COSMICGALE and SUPERNOVA rules by itsreallynick · Pull Request #5 · mandiant/sunburst_countermeasures",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 45693,
	"plain_text": "Remove COSMICGALE and SUPERNOVA rules by itsreallynick ·\r\nPull Request #5 · mandiant/sunburst_countermeasures\r\nBy itsreallynick\r\nArchived: 2026-04-05 16:19:11 UTC\r\nThis repository was archived by the owner on Aug 6, 2024. It is now read-only.\r\nConversation\r\nadded 2 commits\r\nDecember 15, 2020 11:48\r\nPlease consider removing this Yara rule from the repo to reduce on-going industry confusion. Based on\r\nAs there is no tied to the software supply chain compromises, we are not currently tracking this as t\r\n-YOUR BOY CARR\r\nRemoved COSMICGALE and SUPERNOVA rules as intended.\r\n itsreallynick changed the title Remove COSMICGALE rule Remove COSMICGALE and SUPERNOVA rules\r\nDec 15, 2020\r\nSource: https://github.com/fireeye/sunburst_countermeasures/pull/5\r\nhttps://github.com/fireeye/sunburst_countermeasures/pull/5\r\nPage 1 of 1",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"Malpedia"
	],
	"origins": [
		"web"
	],
	"references": [
		"https://github.com/fireeye/sunburst_countermeasures/pull/5"
	],
	"report_names": [
		"5"
	],
	"threat_actors": [],
	"ts_created_at": 1775434304,
	"ts_updated_at": 1775826714,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/a9aa3edbac9bfc195484d559c912779352c7bcfc.pdf",
		"text": "https://archive.orkl.eu/a9aa3edbac9bfc195484d559c912779352c7bcfc.txt",
		"img": "https://archive.orkl.eu/a9aa3edbac9bfc195484d559c912779352c7bcfc.jpg"
	}
}