Loading IOCs…

{'aliases': ['CostaRicto'],
 'created': '2021-05-24T13:37:20.240Z',
 'created_by_ref': 'identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5',
 'description': '[CostaRicto](https://attack.mitre.org/groups/G0132) is a '
                'suspected hacker-for-hire cyber espionage campaign that has '
                'targeted multiple industries worldwide since at least 2019. '
                "[CostaRicto](https://attack.mitre.org/groups/G0132)'s "
                'targets, a large portion of which are financial institutions, '
                'are scattered across Europe, the Americas, Asia, Australia, '
                'and Africa, with a large concentration in South '
                'Asia.(Citation: BlackBerry CostaRicto November 2020)',
 'external_references': [{'external_id': 'G0132',
                          'source_name': 'mitre-attack',
                          'url': 'https://attack.mitre.org/groups/G0132'},
                         {'description': 'The BlackBerry Research and '
                                         'Intelligence Team. (2020, November '
                                         '12). The CostaRicto Campaign: '
                                         'Cyber-Espionage Outsourced. '
                                         'Retrieved May 24, 2021.',
                          'source_name': 'BlackBerry CostaRicto November 2020',
                          'url': 'https://blogs.blackberry.com/en/2020/11/the-costaricto-campaign-cyber-espionage-outsourced'}],
 'id': 'intrusion-set--bb82e0b0-6e9c-439f-970a-4c917a74c5f2',
 'modified': '2025-04-18T17:59:27.430Z',
 'name': 'CostaRicto',
 'object_marking_refs': ['marking-definition--fa42a846-8d90-4e51-bc29-71d5b4802168'],
 'revoked': False,
 'spec_version': '2.1',
 'type': 'intrusion-set',
 'x_mitre_attack_spec_version': '3.2.0',
 'x_mitre_deprecated': True,
 'x_mitre_domains': ['enterprise-attack'],
 'x_mitre_modified_by_ref': 'identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5',
 'x_mitre_version': '1.0'}