Trusted Design

Malware spam: "ATTN: Outstanding Invoices - [4697E0]"

概要

The attachment name combines the recipient's email address with the fake reference number, e.g. barry_51DDAF.xls which isn't actually an Excel file at all, but a multipart MIME file. Payload Security's Hybrid Analysis tools manages to analyse it though, showing several steps in the infection chain.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

Malware spam: ATTN: Invoice J-06593788 from random companies (score: 0.74)
more Necurs botnet sent fake invoices deliver malware My Online Security (score: 0.70)
Spreadsheet Malware: PaymentReceipt.xls (score: 0.69)
Infy Malware Active In Decade of Targeted Attacks (score: 0.64)
THL 2015-12-09: Invoice #... from DataCorp Inc. (score: 0.64)

このPulseに関連する脅威アクター (事実ベース)

Volt Typhoon

Score: 4.62

Matched TTPs:

T1036.008 - Masquerade File Type
T1105 - Ingress Tool Transfer

MITREへのリンク →

BlackByte

Score: 4.62

Matched TTPs:

T1036.008 - Masquerade File Type
T1105 - Ingress Tool Transfer

MITREへのリンク →

Mustang Panda

Score: 14.17

Matched TTPs:

T1036.008 - Masquerade File Type
T1566.001 - Spearphishing Attachment
T1678 - Delay Execution
T1105 - Ingress Tool Transfer
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Lazarus Group

Score: 7.88

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1105 - Ingress Tool Transfer
T1027.007 - Dynamic API Resolution

MITREへのリンク →

APT28

Score: 10.32

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1498 - Network Denial of Service
T1105 - Ingress Tool Transfer
T1211 - Exploitation for Defense Evasion

MITREへのリンク →

MuddyWater

Score: 6.19

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1137.001 - Office Template Macros
T1105 - Ingress Tool Transfer

MITREへのリンク →

Threat Group-3390

Score: 8.94

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1608.002 - Upload Tool
T1105 - Ingress Tool Transfer
T1027.015 - Compression

MITREへのリンク →

Gamaredon Group

Score: 4.80

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1105 - Ingress Tool Transfer
T1027.015 - Compression

MITREへのリンク →

APT32

Score: 3.75

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1105 - Ingress Tool Transfer

MITREへのリンク →

BITTER

Score: 3.75

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1105 - Ingress Tool Transfer

MITREへのリンク →

Dragonfly

Score: 5.27

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1598.002 - Spearphishing Attachment
T1105 - Ingress Tool Transfer

MITREへのリンク →

Sandworm Team

Score: 5.50

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1195 - Supply Chain Compromise
T1105 - Ingress Tool Transfer

MITREへのリンク →

Molerats

Score: 4.80

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1105 - Ingress Tool Transfer
T1027.015 - Compression

MITREへのリンク →

APT41

Score: 3.75

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1105 - Ingress Tool Transfer

MITREへのリンク →

Winter Vivern

Score: 3.75

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1105 - Ingress Tool Transfer

MITREへのリンク →

Higaisa

Score: 6.12

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1027.015 - Compression

MITREへのリンク →

Leviathan

Score: 4.80

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1105 - Ingress Tool Transfer
T1027.015 - Compression

MITREへのリンク →

Mofang

Score: 4.03

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1027.015 - Compression

MITREへのリンク →

Star Blizzard

Score: 4.50

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1598.002 - Spearphishing Attachment

MITREへのリンク →

SideCopy

Score: 5.27

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1598.002 - Spearphishing Attachment
T1105 - Ingress Tool Transfer

MITREへのリンク →

OilRig

Score: 5.50

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1195 - Supply Chain Compromise
T1105 - Ingress Tool Transfer

MITREへのリンク →

Kimsuky

Score: 3.75

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1105 - Ingress Tool Transfer

MITREへのリンク →

Wizard Spider

Score: 3.75

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1105 - Ingress Tool Transfer

MITREへのリンク →

TA2541

Score: 4.80

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1105 - Ingress Tool Transfer
T1027.015 - Compression

MITREへのリンク →

Sidewinder

Score: 5.27

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1598.002 - Spearphishing Attachment
T1105 - Ingress Tool Transfer

MITREへのリンク →

FIN7

Score: 3.75

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1105 - Ingress Tool Transfer

MITREへのリンク →

APT-C-36

Score: 3.75

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1105 - Ingress Tool Transfer

MITREへのリンク →

Ember Bear

Score: 3.84

Matched TTPs:

T1195 - Supply Chain Compromise

MITREへのリンク →

Medusa Group

Score: 4.91

Matched TTPs:

T1608.002 - Upload Tool
T1105 - Ingress Tool Transfer

MITREへのリンク →

Storm-1811

Score: 5.31

Matched TTPs:

T1566.004 - Spearphishing Voice
T1105 - Ingress Tool Transfer

MITREへのリンク →

Velvet Ant

Score: 4.13

Matched TTPs:

T1211 - Exploitation for Defense Evasion

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Mustang Panda

Score: 0.76

Matched TTPs:

T1678 - Delay Execution
T1566.001 - Spearphishing Attachment
T1027.007 - Dynamic API Resolution
T1036.008 - Masquerade File Type
T1105 - Ingress Tool Transfer

MITREへのリンク →

APT28

Score: 0.60

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1498 - Network Denial of Service
T1211 - Exploitation for Defense Evasion
T1105 - Ingress Tool Transfer

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る