Pulse Detail-

Evoltin POS Malware Attacks via Macro

概要

Over the past couple of months McAfee Labs has seen an increase in the usage of macros to deliver malware. This kind of malware, as mentioned in previous posts (Dridex, Bartallex), usually arrives as an attached document within a phishing email. Recently McAfee labs came across a point-of-sale (POS) malware that spreads through malicious macros inside a doc file. This macro comes into users’ systems through a spam email with subjects such as "My Resume," "Openings," Internship," etc. and an attached Microsoft Word file, some with names like these:

Created: 2026-02-23

Indicators

類似Pulses

Enterprises Hit by BARTALEX Macro Malware (score: 0.80)
Phishing Email Serving W97M/Dropper.cu via Office Doc with Macro (score: 0.71)
Dyre Botnet Using Malicious Microsoft Word Macros (score: 0.69)
Malicious Office files dropping Kasidet and Dridex (score: 0.68)
Malicious macro using a sneaky new trick (score: 0.68)

このPulseに関連する脅威アクター (事実ベース)

Lazarus Group

Score: 27.05

Matched TTPs:

T1027.009 - Embedded Payloads
T1587.001 - Malware
T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1203 - Exploitation for Client Execution
T1059.005 - Visual Basic
T1027.007 - Dynamic API Resolution
T1564.001 - Hidden Files and Directories
T1124 - System Time Discovery
T1529 - System Shutdown/Reboot

MITREへのリンク →

TA577

Score: 5.29

Matched TTPs:

T1027.009 - Embedded Payloads
T1566.002 - Spearphishing Link

MITREへのリンク →

Moonstone Sleet

Score: 13.02

Matched TTPs:

T1027.009 - Embedded Payloads
T1587.001 - Malware
T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1598 - Phishing for Information

MITREへのリンク →

Contagious Interview

Score: 15.34

Matched TTPs:

T1588.007 - Artificial Intelligence
T1587.001 - Malware
T1204.002 - Malicious File
T1608.001 - Upload Malware
T1059.005 - Visual Basic
T1204.004 - Malicious Copy and Paste

MITREへのリンク →

Scattered Spider

Score: 14.16

Matched TTPs:

T1564.008 - Email Hiding Rules
T1588.001 - Malware
T1598 - Phishing for Information
T1578.002 - Create Cloud Instance

MITREへのリンク →

FIN4

Score: 8.64

Matched TTPs:

T1564.008 - Email Hiding Rules
T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1059.005 - Visual Basic

MITREへのリンク →

Kimsuky

Score: 17.40

Matched TTPs:

T1587.001 - Malware
T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1036.004 - Masquerade Task or Service
T1566 - Phishing
T1598 - Phishing for Information
T1059.005 - Visual Basic

MITREへのリンク →

FIN13

Score: 8.26

Matched TTPs:

T1587.001 - Malware
T1036.004 - Masquerade Task or Service
T1059.005 - Visual Basic
T1564.001 - Hidden Files and Directories

MITREへのリンク →

OilRig

Score: 14.61

Matched TTPs:

T1587.001 - Malware
T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1203 - Exploitation for Client Execution
T1137.004 - Outlook Home Page
T1059.005 - Visual Basic

MITREへのリンク →

UNC3886

Score: 14.87

Matched TTPs:

T1587.001 - Malware
T1588.001 - Malware
T1036.004 - Masquerade Task or Service
T1205.001 - Port Knocking
T1203 - Exploitation for Client Execution
T1124 - System Time Discovery

MITREへのリンク →

LuminousMoth

Score: 10.64

Matched TTPs:

T1587.001 - Malware
T1566.002 - Spearphishing Link
T1608.001 - Upload Malware
T1588.001 - Malware
T1564.001 - Hidden Files and Directories

MITREへのリンク →

Sandworm Team

Score: 10.07

Matched TTPs:

T1587.001 - Malware
T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1203 - Exploitation for Client Execution
T1059.005 - Visual Basic

MITREへのリンク →

APT29

Score: 6.70

Matched TTPs:

T1587.001 - Malware
T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution

MITREへのリンク →

Aoqin Dragon

Score: 4.38

Matched TTPs:

T1587.001 - Malware
T1204.002 - Malicious File
T1203 - Exploitation for Client Execution

MITREへのリンク →

RedCurl

Score: 9.27

Matched TTPs:

T1587.001 - Malware
T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1059.005 - Visual Basic
T1564.001 - Hidden Files and Directories

MITREへのリンク →

Turla

Score: 10.00

Matched TTPs:

T1587.001 - Malware
T1566.002 - Spearphishing Link
T1588.001 - Malware
T1059.005 - Visual Basic
T1124 - System Time Discovery

MITREへのリンク →

Mustang Panda

Score: 16.87

Matched TTPs:

T1587.001 - Malware
T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1203 - Exploitation for Client Execution
T1059.005 - Visual Basic
T1027.007 - Dynamic API Resolution
T1564.001 - Hidden Files and Directories

MITREへのリンク →

TeamTNT

Score: 4.07

Matched TTPs:

T1587.001 - Malware
T1608.001 - Upload Malware

MITREへのリンク →

FIN7

Score: 23.22

Matched TTPs:

T1587.001 - Malware
T1559.002 - Dynamic Data Exchange
T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1674 - Input Injection
T1036.004 - Masquerade Task or Service
T1059.005 - Visual Basic
T1564.001 - Hidden Files and Directories
T1124 - System Time Discovery

MITREへのリンク →

Cobalt Group

Score: 8.75

Matched TTPs:

T1559.002 - Dynamic Data Exchange
T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution
T1059.005 - Visual Basic

MITREへのリンク →

MuddyWater

Score: 16.91

Matched TTPs:

T1559.002 - Dynamic Data Exchange
T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1137.001 - Office Template Macros
T1203 - Exploitation for Client Execution
T1027.004 - Compile After Delivery
T1059.005 - Visual Basic

MITREへのリンク →

Sidewinder

Score: 14.97

Matched TTPs:

T1559.002 - Dynamic Data Exchange
T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1598.002 - Spearphishing Attachment
T1203 - Exploitation for Client Execution
T1059.005 - Visual Basic
T1124 - System Time Discovery

MITREへのリンク →

APT28

Score: 23.83

Matched TTPs:

T1559.002 - Dynamic Data Exchange
T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution
T1598 - Phishing for Information
T1498 - Network Denial of Service
T1221 - Template Injection
T1564.001 - Hidden Files and Directories
T1550.001 - Application Access Token

MITREへのリンク →

APT37

Score: 10.93

Matched TTPs:

T1559.002 - Dynamic Data Exchange
T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution
T1059.005 - Visual Basic
T1529 - System Shutdown/Reboot

MITREへのリンク →

Gallmaker

Score: 4.41

Matched TTPs:

T1559.002 - Dynamic Data Exchange
T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment

MITREへのリンク →

Leviathan

Score: 11.90

Matched TTPs:

T1559.002 - Dynamic Data Exchange
T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution
T1059.005 - Visual Basic
T1027.015 - Compression

MITREへのリンク →

BITTER

Score: 9.97

Matched TTPs:

T1559.002 - Dynamic Data Exchange
T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1036.004 - Masquerade Task or Service
T1203 - Exploitation for Client Execution

MITREへのリンク →

TA505

Score: 11.69

Matched TTPs:

T1559.002 - Dynamic Data Exchange
T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1588.001 - Malware
T1059.005 - Visual Basic

MITREへのリンク →

Patchwork

Score: 8.75

Matched TTPs:

T1559.002 - Dynamic Data Exchange
T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution
T1059.005 - Visual Basic

MITREへのリンク →

Malteiro

Score: 3.07

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1059.005 - Visual Basic

MITREへのリンク →

APT12

Score: 3.16

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution

MITREへのリンク →

Machete

Score: 4.51

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1059.005 - Visual Basic

MITREへのリンク →

Elderwood

Score: 4.60

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution

MITREへのリンク →

Transparent Tribe

Score: 8.67

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution
T1059.005 - Visual Basic
T1564.001 - Hidden Files and Directories

MITREへのリンク →

Dragonfly

Score: 13.55

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1598.002 - Spearphishing Attachment
T1203 - Exploitation for Client Execution
T1036.010 - Masquerade Account Name
T1221 - Template Injection

MITREへのリンク →

WIRTE

Score: 3.07

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1059.005 - Visual Basic

MITREへのリンク →

APT-C-36

Score: 5.16

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1059.005 - Visual Basic

MITREへのリンク →

CURIUM

Score: 4.25

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1124 - System Time Discovery

MITREへのリンク →

Tropic Trooper

Score: 8.97

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution
T1221 - Template Injection
T1564.001 - Hidden Files and Directories

MITREへのリンク →

DarkHydrus

Score: 4.81

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1221 - Template Injection

MITREへのリンク →

PLATINUM

Score: 6.20

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1056.004 - Credential API Hooking

MITREへのリンク →

HEXANE

Score: 4.16

Matched TTPs:

T1204.002 - Malicious File
T1608.001 - Upload Malware
T1059.005 - Visual Basic

MITREへのリンク →

FIN8

Score: 3.11

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment

MITREへのリンク →

Threat Group-3390

Score: 8.28

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1203 - Exploitation for Client Execution
T1027.015 - Compression

MITREへのリンク →

LazyScripter

Score: 8.94

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1588.001 - Malware
T1059.005 - Visual Basic

MITREへのリンク →

PROMETHIUM

Score: 7.02

Matched TTPs:

T1204.002 - Malicious File
T1036.004 - Masquerade Task or Service
T1205.001 - Port Knocking

MITREへのリンク →

APT39

Score: 9.05

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1059.010 - AutoHotKey & AutoIT
T1059.005 - Visual Basic

MITREへのリンク →

Star Blizzard

Score: 7.26

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1598.002 - Spearphishing Attachment

MITREへのリンク →

Higaisa

Score: 12.40

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1203 - Exploitation for Client Execution
T1059.005 - Visual Basic
T1124 - System Time Discovery
T1027.015 - Compression

MITREへのリンク →

Rancor

Score: 3.07

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1059.005 - Visual Basic

MITREへのリンク →

Wizard Spider

Score: 5.21

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service

MITREへのリンク →

Magic Hound

Score: 9.36

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1036.004 - Masquerade Task or Service
T1036.010 - Masquerade Account Name
T1059.005 - Visual Basic

MITREへのリンク →

Storm-1811

Score: 5.86

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1036.010 - Masquerade Account Name

MITREへのリンク →

Inception

Score: 7.71

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution
T1221 - Template Injection
T1059.005 - Visual Basic

MITREへのリンク →

EXOTIC LILY

Score: 6.58

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1203 - Exploitation for Client Execution

MITREへのリンク →

Saint Bear

Score: 5.13

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1203 - Exploitation for Client Execution

MITREへのリンク →

FIN6

Score: 3.76

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service

MITREへのリンク →

TA459

Score: 4.56

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution
T1059.005 - Visual Basic

MITREへのリンク →

Gorgon Group

Score: 3.07

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1059.005 - Visual Basic

MITREへのリンク →

TA2541

Score: 12.10

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1588.001 - Malware
T1059.005 - Visual Basic
T1027.015 - Compression

MITREへのリンク →

Earth Lusca

Score: 8.07

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1608.001 - Upload Malware
T1588.001 - Malware
T1059.005 - Visual Basic

MITREへのリンク →

SideCopy

Score: 8.66

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1598.002 - Spearphishing Attachment
T1059.005 - Visual Basic

MITREへのリンク →

Mofang

Score: 6.26

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1027.015 - Compression

MITREへのリンク →

Tonto Team

Score: 3.16

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution

MITREへのリンク →

Andariel

Score: 5.61

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1588.001 - Malware
T1203 - Exploitation for Client Execution

MITREへのリンク →

BRONZE BUTLER

Score: 7.15

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution
T1059.005 - Visual Basic
T1124 - System Time Discovery

MITREへのリンク →

APT38

Score: 6.69

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1059.005 - Visual Basic
T1529 - System Shutdown/Reboot

MITREへのリンク →

Naikon

Score: 8.30

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1137.006 - Add-ins
T1036.004 - Masquerade Task or Service

MITREへのリンク →

Molerats

Score: 7.66

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1059.005 - Visual Basic
T1027.015 - Compression

MITREへのリンク →

admin@338

Score: 3.16

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution

MITREへのリンク →

Gamaredon Group

Score: 14.96

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1027.004 - Compile After Delivery
T1221 - Template Injection
T1059.005 - Visual Basic
T1027.015 - Compression

MITREへのリンク →

Darkhotel

Score: 5.75

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution
T1124 - System Time Discovery

MITREへのリンク →

APT32

Score: 12.74

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1036.004 - Masquerade Task or Service
T1203 - Exploitation for Client Execution
T1059.005 - Visual Basic
T1564.001 - Hidden Files and Directories

MITREへのリンク →

The White Company

Score: 5.75

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution
T1124 - System Time Discovery

MITREへのリンク →

APT33

Score: 6.01

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution
T1059.005 - Visual Basic

MITREへのリンク →

Silence

Score: 3.07

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1059.005 - Visual Basic

MITREへのリンク →

Confucius

Score: 9.16

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution
T1221 - Template Injection
T1059.005 - Visual Basic

MITREへのリンク →

BlackTech

Score: 4.60

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1203 - Exploitation for Client Execution

MITREへのリンク →

Windshift

Score: 4.51

Matched TTPs:

T1204.002 - Malicious File
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1059.005 - Visual Basic

MITREへのリンク →

Mustard Tempest

Score: 3.42

Matched TTPs:

T1566.002 - Spearphishing Link
T1608.001 - Upload Malware

MITREへのリンク →

APT3

Score: 6.56

Matched TTPs:

T1566.002 - Spearphishing Link
T1203 - Exploitation for Client Execution
T1036.010 - Masquerade Account Name

MITREへのリンク →

APT1

Score: 4.78

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1588.001 - Malware

MITREへのリンク →

ZIRCONIUM

Score: 9.57

Matched TTPs:

T1566.002 - Spearphishing Link
T1036.004 - Masquerade Task or Service
T1598 - Phishing for Information
T1124 - System Time Discovery

MITREへのリンク →

APT42

Score: 4.82

Matched TTPs:

T1566.002 - Spearphishing Link
T1608.001 - Upload Malware
T1059.005 - Visual Basic

MITREへのリンク →

APT41

Score: 4.46

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1203 - Exploitation for Client Execution

MITREへのリンク →

Ember Bear

Score: 3.95

Matched TTPs:

T1588.001 - Malware
T1203 - Exploitation for Client Execution

MITREへのリンク →

LAPSUS$

Score: 6.59

Matched TTPs:

T1588.001 - Malware
T1578.002 - Create Cloud Instance

MITREへのリンク →

Aquatic Panda

Score: 4.55

Matched TTPs:

T1588.001 - Malware
T1036.004 - Masquerade Task or Service

MITREへのリンク →

BackdoorDiplomacy

Score: 4.55

Matched TTPs:

T1588.001 - Malware
T1036.004 - Masquerade Task or Service

MITREへのリンク →

INC Ransom

Score: 3.29

Matched TTPs:

T1566 - Phishing

MITREへのリンク →

Sea Turtle

Score: 8.40

Matched TTPs:

T1566 - Phishing
T1203 - Exploitation for Client Execution
T1027.004 - Compile After Delivery

MITREへのリンク →

Axiom

Score: 4.78

Matched TTPs:

T1566 - Phishing
T1203 - Exploitation for Client Execution

MITREへのリンク →

AppleJeus

Score: 3.29

Matched TTPs:

T1566 - Phishing

MITREへのリンク →

GOLD SOUTHFIELD

Score: 3.29

Matched TTPs:

T1566 - Phishing

MITREへのリンク →

Rocke

Score: 6.29

Matched TTPs:

T1027.004 - Compile After Delivery
T1564.001 - Hidden Files and Directories

MITREへのリンク →

HAFNIUM

Score: 6.80

Matched TTPs:

T1564.001 - Hidden Files and Directories
T1550.001 - Application Access Token

MITREへのリンク →

Medusa Group

Score: 8.16

Matched TTPs:

T1529 - System Shutdown/Reboot
T1218.014 - MMC

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Lazarus Group

Score: 0.77

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1059.005 - Visual Basic
T1587.001 - Malware
T1027.009 - Embedded Payloads
T1529 - System Shutdown/Reboot
T1204.002 - Malicious File
T1564.001 - Hidden Files and Directories
T1124 - System Time Discovery
T1027.007 - Dynamic API Resolution
T1036.004 - Masquerade Task or Service
T1566.002 - Spearphishing Link
T1203 - Exploitation for Client Execution

MITREへのリンク →

FIN7

Score: 0.72

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1674 - Input Injection
T1059.005 - Visual Basic
T1587.001 - Malware
T1204.002 - Malicious File
T1564.001 - Hidden Files and Directories
T1124 - System Time Discovery
T1559.002 - Dynamic Data Exchange
T1036.004 - Masquerade Task or Service
T1566.002 - Spearphishing Link

MITREへのリンク →

APT28

Score: 0.71

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1221 - Template Injection
T1550.001 - Application Access Token
T1204.002 - Malicious File
T1598 - Phishing for Information
T1564.001 - Hidden Files and Directories
T1559.002 - Dynamic Data Exchange
T1203 - Exploitation for Client Execution
T1498 - Network Denial of Service

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る

Evoltin POS Malware Attacks via Macro

概要

Indicators

類似Pulses

このPulseに関連する脅威アクター (事実ベース)

このPulseに関連する脅威アクター (推論ベース)

Related CVEs

Pulse – 脅威アクター グラフ

Pulse – 脅威アクターグラフ