Trusted Design

Trojanized PuTTY Software

概要

In late 2013­­­–early 2014, a compromised FTP client dubbed “StealZilla,” based off the open source FileZilla FTP client was discovered. The attackers modified a few lines of code, recompiled the program, and disbursed the trojanized version on compromised web servers. This new attack appears to involve the same actors who reused the same techniques to alter the source code of the widely used open source Telnet/SSH client, PuTTY, and used their network of compromised web servers to serve up similar fake Putty download pages. This new campaign is like the StealZilla campaign in almost every way. This trojanized version of PuTTY harvests credentials and relays the information back to a collection server in the same way too. The operation is very quick and quiet. Login details are sent to attackers using an HTTP GET connection ONLY once.

Created: 2026-02-23

Indicators

類似Pulses

このPulseに関連する脅威アクター (事実ベース)

APT41

Score: 11.41
Matched TTPs:
  • T1069 - Permission Groups Discovery
  • T1071.002 - File Transfer Protocols
  • T1203 - Exploitation for Client Execution
  • T1570 - Lateral Tool Transfer
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Scattered Spider

Score: 15.15
Matched TTPs:
  • T1069 - Permission Groups Discovery
  • T1598.003 - Spearphishing Link
  • T1657 - Financial Theft
  • T1204 - User Execution
  • T1041 - Exfiltration Over C2 Channel
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

TA505

Score: 6.82
Matched TTPs:
  • T1069 - Permission Groups Discovery
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Volt Typhoon

Score: 13.67
Matched TTPs:
  • T1069 - Permission Groups Discovery
  • T1552 - Unsecured Credentials
  • T1570 - Lateral Tool Transfer
  • T1584.004 - Server
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

APT3

Score: 7.53
Matched TTPs:
  • T1069 - Permission Groups Discovery
  • T1041 - Exfiltration Over C2 Channel
  • T1203 - Exploitation for Client Execution
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

FIN13

Score: 6.59
Matched TTPs:
  • T1069 - Permission Groups Discovery
  • T1657 - Financial Theft
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Malteiro

Score: 3.31
Matched TTPs:
  • T1204.002 - Malicious File
  • T1657 - Financial Theft
MITREへのリンク →

APT12

Score: 4.68
Matched TTPs:
  • T1204.002 - Malicious File
  • T1102.002 - Bidirectional Communication
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

Kimsuky

Score: 24.34
Matched TTPs:
  • T1204.002 - Malicious File
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1657 - Financial Theft
  • T1583.006 - Web Services
  • T1041 - Exfiltration Over C2 Channel
  • T1071.002 - File Transfer Protocols
  • T1102.002 - Bidirectional Communication
  • T1105 - Ingress Tool Transfer
  • T1588.003 - Code Signing Certificates
  • T1078.003 - Local Accounts
MITREへのリンク →

Elderwood

Score: 4.82
Matched TTPs:
  • T1204.002 - Malicious File
  • T1203 - Exploitation for Client Execution
  • T1189 - Drive-by Compromise
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Transparent Tribe

Score: 4.05
Matched TTPs:
  • T1204.002 - Malicious File
  • T1203 - Exploitation for Client Execution
  • T1189 - Drive-by Compromise
MITREへのリンク →

Dragonfly

Score: 13.74
Matched TTPs:
  • T1204.002 - Malicious File
  • T1598.003 - Spearphishing Link
  • T1071.002 - File Transfer Protocols
  • T1203 - Exploitation for Client Execution
  • T1189 - Drive-by Compromise
  • T1584.004 - Server
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Contagious Interview

Score: 22.19
Matched TTPs:
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1657 - Financial Theft
  • T1480 - Execution Guardrails
  • T1583.006 - Web Services
  • T1041 - Exfiltration Over C2 Channel
  • T1547.013 - XDG Autostart Entries
  • T1204.004 - Malicious Copy and Paste
MITREへのリンク →

Aoqin Dragon

Score: 4.52
Matched TTPs:
  • T1204.002 - Malicious File
  • T1203 - Exploitation for Client Execution
  • T1570 - Lateral Tool Transfer
MITREへのリンク →

CURIUM

Score: 10.61
Matched TTPs:
  • T1204.002 - Malicious File
  • T1598.003 - Spearphishing Link
  • T1041 - Exfiltration Over C2 Channel
  • T1584.006 - Web Services
  • T1189 - Drive-by Compromise
MITREへのリンク →

Tropic Trooper

Score: 5.72
Matched TTPs:
  • T1204.002 - Malicious File
  • T1203 - Exploitation for Client Execution
  • T1105 - Ingress Tool Transfer
  • T1078.003 - Local Accounts
MITREへのリンク →

PLATINUM

Score: 3.33
Matched TTPs:
  • T1204.002 - Malicious File
  • T1189 - Drive-by Compromise
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

HEXANE

Score: 5.94
Matched TTPs:
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1102.002 - Bidirectional Communication
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

FIN8

Score: 4.72
Matched TTPs:
  • T1204.002 - Malicious File
  • T1105 - Ingress Tool Transfer
  • T1588.003 - Code Signing Certificates
MITREへのリンク →

Threat Group-3390

Score: 13.10
Matched TTPs:
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1203 - Exploitation for Client Execution
  • T1189 - Drive-by Compromise
  • T1105 - Ingress Tool Transfer
  • T1588.003 - Code Signing Certificates
  • T1027.015 - Compression
MITREへのリンク →

BITTER

Score: 5.03
Matched TTPs:
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1203 - Exploitation for Client Execution
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

APT37

Score: 7.22
Matched TTPs:
  • T1204.002 - Malicious File
  • T1102.002 - Bidirectional Communication
  • T1203 - Exploitation for Client Execution
  • T1189 - Drive-by Compromise
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

LazyScripter

Score: 5.55
Matched TTPs:
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1583.006 - Web Services
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

PROMETHIUM

Score: 9.35
Matched TTPs:
  • T1204.002 - Malicious File
  • T1205.001 - Port Knocking
  • T1189 - Drive-by Compromise
  • T1078.003 - Local Accounts
MITREへのリンク →

APT39

Score: 5.94
Matched TTPs:
  • T1204.002 - Malicious File
  • T1041 - Exfiltration Over C2 Channel
  • T1102.002 - Bidirectional Communication
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Star Blizzard

Score: 5.22
Matched TTPs:
  • T1204.002 - Malicious File
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
MITREへのリンク →

Higaisa

Score: 7.41
Matched TTPs:
  • T1204.002 - Malicious File
  • T1041 - Exfiltration Over C2 Channel
  • T1203 - Exploitation for Client Execution
  • T1027.015 - Compression
MITREへのリンク →

Wizard Spider

Score: 12.55
Matched TTPs:
  • T1204.002 - Malicious File
  • T1041 - Exfiltration Over C2 Channel
  • T1570 - Lateral Tool Transfer
  • T1555.004 - Windows Credential Manager
  • T1105 - Ingress Tool Transfer
  • T1588.003 - Code Signing Certificates
MITREへのリンク →

OilRig

Score: 16.34
Matched TTPs:
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1203 - Exploitation for Client Execution
  • T1137.004 - Outlook Home Page
  • T1555.004 - Windows Credential Manager
  • T1105 - Ingress Tool Transfer
  • T1588.003 - Code Signing Certificates
MITREへのリンク →

Sandworm Team

Score: 16.93
Matched TTPs:
  • T1204.002 - Malicious File
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1041 - Exfiltration Over C2 Channel
  • T1102.002 - Bidirectional Communication
  • T1203 - Exploitation for Client Execution
  • T1570 - Lateral Tool Transfer
  • T1584.004 - Server
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Magic Hound

Score: 12.43
Matched TTPs:
  • T1204.002 - Malicious File
  • T1598.003 - Spearphishing Link
  • T1583.006 - Web Services
  • T1102.002 - Bidirectional Communication
  • T1570 - Lateral Tool Transfer
  • T1189 - Drive-by Compromise
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Cobalt Group

Score: 3.06
Matched TTPs:
  • T1204.002 - Malicious File
  • T1203 - Exploitation for Client Execution
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Storm-1811

Score: 3.80
Matched TTPs:
  • T1204.002 - Malicious File
  • T1570 - Lateral Tool Transfer
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

EXOTIC LILY

Score: 4.25
Matched TTPs:
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

Saint Bear

Score: 6.27
Matched TTPs:
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1583.006 - Web Services
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

Lazarus Group

Score: 14.04
Matched TTPs:
  • T1204.002 - Malicious File
  • T1583.006 - Web Services
  • T1041 - Exfiltration Over C2 Channel
  • T1102.002 - Bidirectional Communication
  • T1203 - Exploitation for Client Execution
  • T1189 - Drive-by Compromise
  • T1584.004 - Server
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Patchwork

Score: 7.28
Matched TTPs:
  • T1204.002 - Malicious File
  • T1598.003 - Spearphishing Link
  • T1203 - Exploitation for Client Execution
  • T1189 - Drive-by Compromise
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

FIN7

Score: 10.61
Matched TTPs:
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1583.006 - Web Services
  • T1102.002 - Bidirectional Communication
  • T1105 - Ingress Tool Transfer
  • T1078.003 - Local Accounts
MITREへのリンク →

Moonstone Sleet

Score: 6.00
Matched TTPs:
  • T1204.002 - Malicious File
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

APT28

Score: 20.36
Matched TTPs:
  • T1204.002 - Malicious File
  • T1598.003 - Spearphishing Link
  • T1583.006 - Web Services
  • T1102.002 - Bidirectional Communication
  • T1203 - Exploitation for Client Execution
  • T1189 - Drive-by Compromise
  • T1105 - Ingress Tool Transfer
  • T1669 - Wi-Fi Networks
  • T1211 - Exploitation for Defense Evasion
MITREへのリンク →

TA2541

Score: 8.70
Matched TTPs:
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1583.006 - Web Services
  • T1105 - Ingress Tool Transfer
  • T1027.015 - Compression
MITREへのリンク →

Earth Lusca

Score: 12.99
Matched TTPs:
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1583.006 - Web Services
  • T1584.006 - Web Services
  • T1189 - Drive-by Compromise
  • T1584.004 - Server
MITREへのリンク →

SideCopy

Score: 3.54
Matched TTPs:
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Mofang

Score: 3.94
Matched TTPs:
  • T1204.002 - Malicious File
  • T1027.015 - Compression
MITREへのリンク →

Leviathan

Score: 16.91
Matched TTPs:
  • T1204.002 - Malicious File
  • T1041 - Exfiltration Over C2 Channel
  • T1102.003 - One-Way Communication
  • T1203 - Exploitation for Client Execution
  • T1189 - Drive-by Compromise
  • T1584.004 - Server
  • T1105 - Ingress Tool Transfer
  • T1027.015 - Compression
MITREへのリンク →

Tonto Team

Score: 3.06
Matched TTPs:
  • T1204.002 - Malicious File
  • T1203 - Exploitation for Client Execution
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Andariel

Score: 4.82
Matched TTPs:
  • T1204.002 - Malicious File
  • T1203 - Exploitation for Client Execution
  • T1189 - Drive-by Compromise
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

BRONZE BUTLER

Score: 8.67
Matched TTPs:
  • T1204.002 - Malicious File
  • T1550.003 - Pass the Ticket
  • T1203 - Exploitation for Client Execution
  • T1189 - Drive-by Compromise
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

APT38

Score: 3.33
Matched TTPs:
  • T1204.002 - Malicious File
  • T1189 - Drive-by Compromise
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

MuddyWater

Score: 9.44
Matched TTPs:
  • T1204.002 - Malicious File
  • T1583.006 - Web Services
  • T1041 - Exfiltration Over C2 Channel
  • T1102.002 - Bidirectional Communication
  • T1203 - Exploitation for Client Execution
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Mustang Panda

Score: 14.63
Matched TTPs:
  • T1204.002 - Malicious File
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1583.006 - Web Services
  • T1041 - Exfiltration Over C2 Channel
  • T1203 - Exploitation for Client Execution
  • T1105 - Ingress Tool Transfer
  • T1588.003 - Code Signing Certificates
MITREへのリンク →

Molerats

Score: 4.72
Matched TTPs:
  • T1204.002 - Malicious File
  • T1105 - Ingress Tool Transfer
  • T1027.015 - Compression
MITREへのリンク →

Gamaredon Group

Score: 21.05
Matched TTPs:
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1480 - Execution Guardrails
  • T1583.006 - Web Services
  • T1041 - Exfiltration Over C2 Channel
  • T1102.003 - One-Way Communication
  • T1102.002 - Bidirectional Communication
  • T1105 - Ingress Tool Transfer
  • T1027.015 - Compression
MITREへのリンク →

Darkhotel

Score: 4.82
Matched TTPs:
  • T1204.002 - Malicious File
  • T1203 - Exploitation for Client Execution
  • T1189 - Drive-by Compromise
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

APT32

Score: 21.99
Matched TTPs:
  • T1204.002 - Malicious File
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1550.003 - Pass the Ticket
  • T1583.006 - Web Services
  • T1041 - Exfiltration Over C2 Channel
  • T1203 - Exploitation for Client Execution
  • T1570 - Lateral Tool Transfer
  • T1189 - Drive-by Compromise
  • T1105 - Ingress Tool Transfer
  • T1078.003 - Local Accounts
MITREへのリンク →

IndigoZebra

Score: 3.58
Matched TTPs:
  • T1204.002 - Malicious File
  • T1583.006 - Web Services
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

APT33

Score: 3.06
Matched TTPs:
  • T1204.002 - Malicious File
  • T1203 - Exploitation for Client Execution
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Sidewinder

Score: 5.52
Matched TTPs:
  • T1204.002 - Malicious File
  • T1598.003 - Spearphishing Link
  • T1203 - Exploitation for Client Execution
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Indrik Spider

Score: 4.40
Matched TTPs:
  • T1204.002 - Malicious File
  • T1584.004 - Server
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

APT29

Score: 20.66
Matched TTPs:
  • T1204.002 - Malicious File
  • T1550.003 - Pass the Ticket
  • T1583.006 - Web Services
  • T1203 - Exploitation for Client Execution
  • T1090.004 - Domain Fronting
  • T1027.006 - HTML Smuggling
  • T1105 - Ingress Tool Transfer
  • T1078.003 - Local Accounts
MITREへのリンク →

Confucius

Score: 7.04
Matched TTPs:
  • T1204.002 - Malicious File
  • T1583.006 - Web Services
  • T1041 - Exfiltration Over C2 Channel
  • T1203 - Exploitation for Client Execution
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

BlackTech

Score: 5.43
Matched TTPs:
  • T1204.002 - Malicious File
  • T1203 - Exploitation for Client Execution
  • T1588.003 - Code Signing Certificates
MITREへのリンク →

Windshift

Score: 3.33
Matched TTPs:
  • T1204.002 - Malicious File
  • T1189 - Drive-by Compromise
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

ZIRCONIUM

Score: 9.62
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1583.006 - Web Services
  • T1041 - Exfiltration Over C2 Channel
  • T1102.002 - Bidirectional Communication
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

LuminousMoth

Score: 4.72
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1041 - Exfiltration Over C2 Channel
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Mustard Tempest

Score: 4.52
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1189 - Drive-by Compromise
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

TeamTNT

Score: 6.88
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1048 - Exfiltration Over Alternative Protocol
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

BlackByte

Score: 10.80
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1480 - Execution Guardrails
  • T1041 - Exfiltration Over C2 Channel
  • T1570 - Lateral Tool Transfer
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

MoustachedBouncer

Score: 4.54
Matched TTPs:
  • T1659 - Content Injection
MITREへのリンク →

Winter Vivern

Score: 12.67
Matched TTPs:
  • T1056.003 - Web Portal Capture
  • T1041 - Exfiltration Over C2 Channel
  • T1584.006 - Web Services
  • T1189 - Drive-by Compromise
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

INC Ransom

Score: 5.54
Matched TTPs:
  • T1657 - Financial Theft
  • T1570 - Lateral Tool Transfer
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Cinnamon Tempest

Score: 3.30
Matched TTPs:
  • T1657 - Financial Theft
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Medusa Group

Score: 7.55
Matched TTPs:
  • T1657 - Financial Theft
  • T1583.006 - Web Services
  • T1570 - Lateral Tool Transfer
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

SilverTerrier

Score: 6.14
Matched TTPs:
  • T1657 - Financial Theft
  • T1071.002 - File Transfer Protocols
MITREへのリンク →

Play

Score: 10.10
Matched TTPs:
  • T1657 - Financial Theft
  • T1048 - Exfiltration Over Alternative Protocol
  • T1105 - Ingress Tool Transfer
  • T1078.003 - Local Accounts
MITREへのリンク →

UNC3886

Score: 11.99
Matched TTPs:
  • T1205.001 - Port Knocking
  • T1554 - Compromise Host Software Binary
  • T1203 - Exploitation for Client Execution
  • T1570 - Lateral Tool Transfer
MITREへのリンク →

HAFNIUM

Score: 5.46
Matched TTPs:
  • T1583.006 - Web Services
  • T1105 - Ingress Tool Transfer
  • T1078.003 - Local Accounts
MITREへのリンク →

Turla

Score: 21.93
Matched TTPs:
  • T1583.006 - Web Services
  • T1584.006 - Web Services
  • T1102.002 - Bidirectional Communication
  • T1570 - Lateral Tool Transfer
  • T1555.004 - Windows Credential Manager
  • T1189 - Drive-by Compromise
  • T1584.004 - Server
  • T1105 - Ingress Tool Transfer
  • T1078.003 - Local Accounts
MITREへのリンク →

POLONIUM

Score: 4.41
Matched TTPs:
  • T1583.006 - Web Services
  • T1102.002 - Bidirectional Communication
MITREへのリンク →

LAPSUS$

Score: 4.13
Matched TTPs:
  • T1204 - User Execution
MITREへのリンク →

Chimera

Score: 4.99
Matched TTPs:
  • T1041 - Exfiltration Over C2 Channel
  • T1570 - Lateral Tool Transfer
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

GALLIUM

Score: 4.99
Matched TTPs:
  • T1041 - Exfiltration Over C2 Channel
  • T1570 - Lateral Tool Transfer
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Agrius

Score: 4.21
Matched TTPs:
  • T1041 - Exfiltration Over C2 Channel
  • T1570 - Lateral Tool Transfer
MITREへのリンク →

Stealth Falcon

Score: 5.59
Matched TTPs:
  • T1041 - Exfiltration Over C2 Channel
  • T1555.004 - Windows Credential Manager
MITREへのリンク →

APT5

Score: 4.13
Matched TTPs:
  • T1554 - Compromise Host Software Binary
MITREへのリンク →

Axiom

Score: 7.80
Matched TTPs:
  • T1203 - Exploitation for Client Execution
  • T1189 - Drive-by Compromise
  • T1001.002 - Steganography
MITREへのリンク →

Sea Turtle

Score: 4.16
Matched TTPs:
  • T1203 - Exploitation for Client Execution
  • T1078.003 - Local Accounts
MITREへのリンク →

Ember Bear

Score: 3.73
Matched TTPs:
  • T1203 - Exploitation for Client Execution
  • T1570 - Lateral Tool Transfer
MITREへのリンク →

FIN10

Score: 4.90
Matched TTPs:
  • T1570 - Lateral Tool Transfer
  • T1078.003 - Local Accounts
MITREへのリンク →

Velvet Ant

Score: 9.03
Matched TTPs:
  • T1570 - Lateral Tool Transfer
  • T1078.003 - Local Accounts
  • T1211 - Exploitation for Defense Evasion
MITREへのリンク →

Daggerfly

Score: 5.38
Matched TTPs:
  • T1189 - Drive-by Compromise
  • T1584.004 - Server
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Kimsuky

Score: 0.77
Matched TTPs:
  • T1105 - Ingress Tool Transfer
  • T1583.006 - Web Services
  • T1657 - Financial Theft
  • T1204.002 - Malicious File
  • T1071.002 - File Transfer Protocols
  • T1608.001 - Upload Malware
  • T1078.003 - Local Accounts
  • T1588.003 - Code Signing Certificates
  • T1598.003 - Spearphishing Link
  • T1102.002 - Bidirectional Communication
  • T1041 - Exfiltration Over C2 Channel
MITREへのリンク →

Turla

Score: 0.73
Matched TTPs:
  • T1584.004 - Server
  • T1105 - Ingress Tool Transfer
  • T1583.006 - Web Services
  • T1584.006 - Web Services
  • T1189 - Drive-by Compromise
  • T1078.003 - Local Accounts
  • T1102.002 - Bidirectional Communication
  • T1570 - Lateral Tool Transfer
  • T1555.004 - Windows Credential Manager
MITREへのリンク →

APT32

Score: 0.72
Matched TTPs:
  • T1105 - Ingress Tool Transfer
  • T1583.006 - Web Services
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1189 - Drive-by Compromise
  • T1078.003 - Local Accounts
  • T1550.003 - Pass the Ticket
  • T1598.003 - Spearphishing Link
  • T1203 - Exploitation for Client Execution
  • T1041 - Exfiltration Over C2 Channel
  • T1570 - Lateral Tool Transfer
MITREへのリンク →

Contagious Interview

Score: 0.72
Matched TTPs:
  • T1204.004 - Malicious Copy and Paste
  • T1583.006 - Web Services
  • T1657 - Financial Theft
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1480 - Execution Guardrails
  • T1041 - Exfiltration Over C2 Channel
  • T1547.013 - XDG Autostart Entries
MITREへのリンク →

Gamaredon Group

Score: 0.70
Matched TTPs:
  • T1105 - Ingress Tool Transfer
  • T1583.006 - Web Services
  • T1027.015 - Compression
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1480 - Execution Guardrails
  • T1102.002 - Bidirectional Communication
  • T1041 - Exfiltration Over C2 Channel
  • T1102.003 - One-Way Communication
MITREへのリンク →

APT28

Score: 0.69
Matched TTPs:
  • T1105 - Ingress Tool Transfer
  • T1583.006 - Web Services
  • T1669 - Wi-Fi Networks
  • T1204.002 - Malicious File
  • T1189 - Drive-by Compromise
  • T1211 - Exploitation for Defense Evasion
  • T1203 - Exploitation for Client Execution
  • T1598.003 - Spearphishing Link
  • T1102.002 - Bidirectional Communication
MITREへのリンク →

APT29

Score: 0.68
Matched TTPs:
  • T1105 - Ingress Tool Transfer
  • T1583.006 - Web Services
  • T1204.002 - Malicious File
  • T1090.004 - Domain Fronting
  • T1078.003 - Local Accounts
  • T1027.006 - HTML Smuggling
  • T1203 - Exploitation for Client Execution
  • T1550.003 - Pass the Ticket
MITREへのリンク →

Sandworm Team

Score: 0.57
Matched TTPs:
  • T1584.004 - Server
  • T1105 - Ingress Tool Transfer
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1598.003 - Spearphishing Link
  • T1203 - Exploitation for Client Execution
  • T1102.002 - Bidirectional Communication
  • T1041 - Exfiltration Over C2 Channel
  • T1570 - Lateral Tool Transfer
MITREへのリンク →

OilRig

Score: 0.56
Matched TTPs:
  • T1105 - Ingress Tool Transfer
  • T1204.002 - Malicious File
  • T1608.001 - Upload Malware
  • T1588.003 - Code Signing Certificates
  • T1203 - Exploitation for Client Execution
  • T1137.004 - Outlook Home Page
  • T1555.004 - Windows Credential Manager
MITREへのリンク →

Leviathan

Score: 0.55
Matched TTPs:
  • T1584.004 - Server
  • T1105 - Ingress Tool Transfer
  • T1027.015 - Compression
  • T1204.002 - Malicious File
  • T1189 - Drive-by Compromise
  • T1203 - Exploitation for Client Execution
  • T1041 - Exfiltration Over C2 Channel
  • T1102.003 - One-Way Communication
MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

← Pulse一覧に戻る