Trusted Design

Sandworm Team Leverage CVE-2014-4114 Zero-Day

概要

iSIGHT Partners has dubbed the intrusion operators who leverage the CVE‐2014‐4114 zero‐day "Sandworm Team." The name was chosen due to unique references to the classic science fiction series Dune, which are characterized by the use of multiple BlackEnergy malware variants. The Sandworm Team has carried out a global, sustained cyber espionage campaign since at least 2009.

Created: 2026-02-23

Indicators

類似Pulses

Sandworm to Blacken: The SCADA Connection (score: 0.66)
Connecting the Dots: Syrian Malware Team Uses BlackWorm for Attacks (2014) (score: 0.63)
Untangling the Patchwork Cyberespionage Group (score: 0.59)
Hawkeye Keylogger – Reborn v8: An in-depth campaign analysis (score: 0.57)
Blackhole Exploit Kit Resurfaces in Live Attacks (score: 0.56)

このPulseに関連する脅威アクター (事実ベース)

Kimsuky

Score: 7.04

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service
T1070.004 - File Deletion

MITREへのリンク →

FIN13

Score: 5.66

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service

MITREへのリンク →

Lazarus Group

Score: 9.70

Matched TTPs:

T1587.001 - Malware
T1036.004 - Masquerade Task or Service
T1070.004 - File Deletion
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Contagious Interview

Score: 7.61

Matched TTPs:

T1587.001 - Malware
T1681 - Search Threat Vendor Data
T1070.004 - File Deletion

MITREへのリンク →

OilRig

Score: 3.48

Matched TTPs:

T1587.001 - Malware
T1070.004 - File Deletion

MITREへのリンク →

UNC3886

Score: 11.17

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1681 - Search Threat Vendor Data
T1036.004 - Masquerade Task or Service
T1070.004 - File Deletion

MITREへのリンク →

Sandworm Team

Score: 8.57

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1584.005 - Botnet
T1070.004 - File Deletion

MITREへのリンク →

Salt Typhoon

Score: 3.57

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application

MITREへのリンク →

APT29

Score: 4.95

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1070.004 - File Deletion

MITREへのリンク →

Play

Score: 4.95

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1070.004 - File Deletion

MITREへのリンク →

RedCurl

Score: 3.48

Matched TTPs:

T1587.001 - Malware
T1070.004 - File Deletion

MITREへのリンク →

Moses Staff

Score: 3.57

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application

MITREへのリンク →

Ke3chang

Score: 10.85

Matched TTPs:

T1587.001 - Malware
T1583.005 - Botnet
T1190 - Exploit Public-Facing Application
T1036.002 - Right-to-Left Override

MITREへのリンク →

Mustang Panda

Score: 10.36

Matched TTPs:

T1587.001 - Malware
T1070.004 - File Deletion
T1518 - Software Discovery
T1027.007 - Dynamic API Resolution

MITREへのリンク →

TeamTNT

Score: 3.48

Matched TTPs:

T1587.001 - Malware
T1070.004 - File Deletion

MITREへのリンク →

FIN7

Score: 5.66

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service

MITREへのリンク →

HAFNIUM

Score: 8.94

Matched TTPs:

T1583.005 - Botnet
T1190 - Exploit Public-Facing Application
T1584.005 - Botnet

MITREへのリンク →

APT5

Score: 6.70

Matched TTPs:

T1583.005 - Botnet
T1190 - Exploit Public-Facing Application
T1070.004 - File Deletion

MITREへのリンク →

Volt Typhoon

Score: 9.22

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1584.005 - Botnet
T1070.004 - File Deletion
T1518 - Software Discovery

MITREへのリンク →

BackdoorDiplomacy

Score: 3.57

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service

MITREへのリンク →

BlackTech

Score: 4.91

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.002 - Right-to-Left Override

MITREへのリンク →

Magic Hound

Score: 4.95

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service
T1070.004 - File Deletion

MITREへのリンク →

Storm-0501

Score: 3.57

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service

MITREへのリンク →

Fox Kitten

Score: 3.57

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service

MITREへのリンク →

Winter Vivern

Score: 3.57

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service

MITREへのリンク →

Axiom

Score: 5.09

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1584.005 - Botnet

MITREへのリンク →

APT41

Score: 4.95

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service
T1070.004 - File Deletion

MITREへのリンク →

MuddyWater

Score: 4.22

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1518 - Software Discovery

MITREへのリンク →

Ferocious Kitten

Score: 3.44

Matched TTPs:

T1036.002 - Right-to-Left Override

MITREへのリンク →

Scarlet Mimic

Score: 3.44

Matched TTPs:

T1036.002 - Right-to-Left Override

MITREへのリンク →

BRONZE BUTLER

Score: 7.57

Matched TTPs:

T1036.002 - Right-to-Left Override
T1070.004 - File Deletion
T1518 - Software Discovery

MITREへのリンク →

Aquatic Panda

Score: 3.48

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1070.004 - File Deletion

MITREへのリンク →

APT32

Score: 3.48

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1070.004 - File Deletion

MITREへのリンク →

Wizard Spider

Score: 3.48

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1070.004 - File Deletion

MITREへのリンク →

FIN6

Score: 3.48

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1070.004 - File Deletion

MITREへのリンク →

Tropic Trooper

Score: 4.13

Matched TTPs:

T1070.004 - File Deletion
T1518 - Software Discovery

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

UNC3886

Score: 0.85

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1070.004 - File Deletion
T1681 - Search Threat Vendor Data
T1036.004 - Masquerade Task or Service

MITREへのリンク →

Ke3chang

Score: 0.80

Matched TTPs:

T1036.002 - Right-to-Left Override
T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1583.005 - Botnet

MITREへのリンク →

Mustang Panda

Score: 0.76

Matched TTPs:

T1070.004 - File Deletion
T1587.001 - Malware
T1027.007 - Dynamic API Resolution
T1518 - Software Discovery

MITREへのリンク →

Lazarus Group

Score: 0.74

Matched TTPs:

T1070.004 - File Deletion
T1587.001 - Malware
T1036.004 - Masquerade Task or Service
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Sandworm Team

Score: 0.72

Matched TTPs:

T1584.005 - Botnet
T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1070.004 - File Deletion

MITREへのリンク →

Volt Typhoon

Score: 0.69

Matched TTPs:

T1584.005 - Botnet
T1190 - Exploit Public-Facing Application
T1518 - Software Discovery
T1070.004 - File Deletion

MITREへのリンク →

HAFNIUM

Score: 0.69

Matched TTPs:

T1584.005 - Botnet
T1190 - Exploit Public-Facing Application
T1583.005 - Botnet

MITREへのリンク →

BRONZE BUTLER

Score: 0.57

Matched TTPs:

T1070.004 - File Deletion
T1036.002 - Right-to-Left Override
T1518 - Software Discovery

MITREへのリンク →

Contagious Interview

Score: 0.57

Matched TTPs:

T1681 - Search Threat Vendor Data
T1070.004 - File Deletion
T1587.001 - Malware

MITREへのリンク →

APT5

Score: 0.57

Matched TTPs:

T1070.004 - File Deletion
T1190 - Exploit Public-Facing Application
T1583.005 - Botnet

MITREへのリンク →

Related CVEs

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る