Trusted Design

Dyre: Emerging threat on financial fraud landscape

概要

A significant upsurge in activity over the past year has seen Dyre emerge as one of the most dangerous financial Trojans, capable of defrauding customers of a wide range of financial institutions across multiple countries. Dyre is a highly developed piece of malware, capable of hijacking all three major web browsers and intercepting internet banking sessions in order to harvest the victim’s credentials and send them to the attackers. Dyre is a multi-pronged threat and is often used to download additional malware on to the victim’s computer. In many cases, the victim is added to a botnet which is then used to send out thousands of spam emails in order to spread the threat further afield.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

Dyre emerges as main financial Trojan threat (score: 0.82)
UPATRE/DYRE MALSPAM -SUBJ: SCANNED IMAGE FROM A XEROX WORKCENTRE (score: 0.73)
Dyreza Malware from Spam (score: 0.72)
Dyre C2 Panels (score: 0.69)
Dyre Malware Campaigners Innovate with Distribution Techniques (score: 0.68)

このPulseに関連する脅威アクター (事実ベース)

Scattered Spider

Score: 29.60

Matched TTPs:

T1666 - Modify Cloud Resource Hierarchy
T1566.002 - Spearphishing Link
T1491 - Defacement
T1019 - System Firmware
T1136.002 - Domain Account
T1552.003 - Shell History
T1030 - Data Transfer Size Limits
T1197 - BITS Jobs
T1090.004 - Domain Fronting

MITREへのリンク →

FIN4

Score: 5.58

Matched TTPs:

T1666 - Modify Cloud Resource Hierarchy
T1543.003 - Windows Service

MITREへのリンク →

Ember Bear

Score: 16.06

Matched TTPs:

T1564.008 - Email Hiding Rules
T1005 - Data from Local System
T1136.002 - Domain Account
T1218.010 - Regsvr32
T1003.003 - NTDS

MITREへのリンク →

Sandworm Team

Score: 18.97

Matched TTPs:

T1564.008 - Email Hiding Rules
T1543.003 - Windows Service
T1566.002 - Spearphishing Link
T1091 - Replication Through Removable Media
T1005 - Data from Local System
T1049 - System Network Connections Discovery
T1218.010 - Regsvr32

MITREへのリンク →

APT41

Score: 8.66

Matched TTPs:

T1539 - Steal Web Session Cookie
T1218.010 - Regsvr32
T1030 - Data Transfer Size Limits

MITREへのリンク →

TA551

Score: 4.13

Matched TTPs:

T1539 - Steal Web Session Cookie

MITREへのリンク →

Mustard Tempest

Score: 9.72

Matched TTPs:

T1682 - Query Public AI Services
T1543.003 - Windows Service
T1091 - Replication Through Removable Media
T1059.012 - Hypervisor CLI

MITREへのリンク →

MuddyWater

Score: 4.95

Matched TTPs:

T1543.003 - Windows Service
T1608.005 - Link Target
T1218.010 - Regsvr32

MITREへのリンク →

LuminousMoth

Score: 5.88

Matched TTPs:

T1543.003 - Windows Service
T1091 - Replication Through Removable Media
T1136.002 - Domain Account

MITREへのリンク →

Confucius

Score: 4.95

Matched TTPs:

T1543.003 - Windows Service
T1608.005 - Link Target
T1218.010 - Regsvr32

MITREへのリンク →

Kimsuky

Score: 32.79

Matched TTPs:

T1543.003 - Windows Service
T1566.002 - Spearphishing Link
T1024 - Custom Cryptographic Protocol
T1091 - Replication Through Removable Media
T1552.003 - Shell History
T1608.005 - Link Target
T1562.013 - Disable or Modify Network Device Firewall
T1001 - Data Obfuscation
T1030 - Data Transfer Size Limits
T1197 - BITS Jobs
T1003.003 - NTDS
T1490 - Inhibit System Recovery

MITREへのリンク →

Sidewinder

Score: 5.40

Matched TTPs:

T1543.003 - Windows Service
T1566.002 - Spearphishing Link
T1218.010 - Regsvr32

MITREへのリンク →

Elderwood

Score: 4.71

Matched TTPs:

T1543.003 - Windows Service
T1218.010 - Regsvr32
T1059.012 - Hypervisor CLI

MITREへのリンク →

Machete

Score: 3.21

Matched TTPs:

T1543.003 - Windows Service
T1059.012 - Hypervisor CLI

MITREへのリンク →

FIN7

Score: 12.64

Matched TTPs:

T1543.003 - Windows Service
T1091 - Replication Through Removable Media
T1011.001 - Exfiltration Over Bluetooth
T1608.005 - Link Target
T1490 - Inhibit System Recovery

MITREへのリンク →

Transparent Tribe

Score: 4.71

Matched TTPs:

T1543.003 - Windows Service
T1218.010 - Regsvr32
T1059.012 - Hypervisor CLI

MITREへのリンク →

Mustang Panda

Score: 16.18

Matched TTPs:

T1543.003 - Windows Service
T1566.002 - Spearphishing Link
T1024 - Custom Cryptographic Protocol
T1091 - Replication Through Removable Media
T1608.005 - Link Target
T1218.010 - Regsvr32
T1055.005 - Thread Local Storage

MITREへのリンク →

APT32

Score: 13.82

Matched TTPs:

T1543.003 - Windows Service
T1566.002 - Spearphishing Link
T1091 - Replication Through Removable Media
T1608.005 - Link Target
T1218.010 - Regsvr32
T1059.012 - Hypervisor CLI
T1490 - Inhibit System Recovery

MITREへのリンク →

APT1

Score: 3.91

Matched TTPs:

T1543.003 - Windows Service
T1136.002 - Domain Account

MITREへのリンク →

Lazarus Group

Score: 17.22

Matched TTPs:

T1543.003 - Windows Service
T1608.005 - Link Target
T1606.001 - Web Cookies
T1218.010 - Regsvr32
T1059.012 - Hypervisor CLI
T1055.005 - Thread Local Storage
T1547.008 - LSASS Driver

MITREへのリンク →

Leviathan

Score: 7.37

Matched TTPs:

T1543.003 - Windows Service
T1024 - Custom Cryptographic Protocol
T1218.010 - Regsvr32
T1059.012 - Hypervisor CLI

MITREへのリンク →

ZIRCONIUM

Score: 9.36

Matched TTPs:

T1543.003 - Windows Service
T1566.002 - Spearphishing Link
T1608.005 - Link Target
T1197 - BITS Jobs

MITREへのリンク →

EXOTIC LILY

Score: 7.44

Matched TTPs:

T1543.003 - Windows Service
T1091 - Replication Through Removable Media
T1218.010 - Regsvr32
T1547.008 - LSASS Driver

MITREへのリンク →

Magic Hound

Score: 12.87

Matched TTPs:

T1543.003 - Windows Service
T1566.002 - Spearphishing Link
T1024 - Custom Cryptographic Protocol
T1608.005 - Link Target
T1059.012 - Hypervisor CLI
T1547.008 - LSASS Driver

MITREへのリンク →

OilRig

Score: 17.57

Matched TTPs:

T1543.003 - Windows Service
T1024 - Custom Cryptographic Protocol
T1091 - Replication Through Removable Media
T1005 - Data from Local System
T1218.010 - Regsvr32
T1556.009 - Conditional Access Policies
T1547.008 - LSASS Driver

MITREへのリンク →

Windshift

Score: 5.74

Matched TTPs:

T1543.003 - Windows Service
T1059.012 - Hypervisor CLI
T1547.008 - LSASS Driver

MITREへのリンク →

APT29

Score: 12.81

Matched TTPs:

T1543.003 - Windows Service
T1024 - Custom Cryptographic Protocol
T1608.005 - Link Target
T1218.010 - Regsvr32
T1547.008 - LSASS Driver
T1490 - Inhibit System Recovery

MITREへのリンク →

TA2541

Score: 11.04

Matched TTPs:

T1543.003 - Windows Service
T1091 - Replication Through Removable Media
T1136.002 - Domain Account
T1608.005 - Link Target
T1001 - Data Obfuscation

MITREへのリンク →

Earth Lusca

Score: 13.28

Matched TTPs:

T1543.003 - Windows Service
T1091 - Replication Through Removable Media
T1136.002 - Domain Account
T1608.005 - Link Target
T1218.001 - Compiled HTML File
T1059.012 - Hypervisor CLI

MITREへのリンク →

Storm-1811

Score: 11.54

Matched TTPs:

T1543.003 - Windows Service
T1567.003 - Exfiltration to Text Storage Sites
T1030 - Data Transfer Size Limits
T1547.008 - LSASS Driver

MITREへのリンク →

Turla

Score: 17.59

Matched TTPs:

T1543.003 - Windows Service
T1136.002 - Domain Account
T1608.005 - Link Target
T1218.001 - Compiled HTML File
T1556.009 - Conditional Access Policies
T1059.012 - Hypervisor CLI
T1490 - Inhibit System Recovery

MITREへのリンク →

Wizard Spider

Score: 5.07

Matched TTPs:

T1543.003 - Windows Service
T1556.009 - Conditional Access Policies

MITREへのリンク →

TA577

Score: 4.11

Matched TTPs:

T1543.003 - Windows Service
T1024 - Custom Cryptographic Protocol

MITREへのリンク →

Patchwork

Score: 10.32

Matched TTPs:

T1543.003 - Windows Service
T1566.002 - Spearphishing Link
T1001 - Data Obfuscation
T1218.010 - Regsvr32
T1059.012 - Hypervisor CLI

MITREへのリンク →

TA505

Score: 5.88

Matched TTPs:

T1543.003 - Windows Service
T1091 - Replication Through Removable Media
T1136.002 - Domain Account

MITREへのリンク →

LazyScripter

Score: 7.89

Matched TTPs:

T1543.003 - Windows Service
T1091 - Replication Through Removable Media
T1136.002 - Domain Account
T1608.005 - Link Target

MITREへのリンク →

APT42

Score: 6.45

Matched TTPs:

T1543.003 - Windows Service
T1091 - Replication Through Removable Media
T1030 - Data Transfer Size Limits

MITREへのリンク →

APT28

Score: 13.84

Matched TTPs:

T1566.002 - Spearphishing Link
T1024 - Custom Cryptographic Protocol
T1608.005 - Link Target
T1218.010 - Regsvr32
T1197 - BITS Jobs
T1059.012 - Hypervisor CLI

MITREへのリンク →

Star Blizzard

Score: 7.10

Matched TTPs:

T1566.002 - Spearphishing Link
T1024 - Custom Cryptographic Protocol
T1091 - Replication Through Removable Media

MITREへのリンク →

Moonstone Sleet

Score: 13.68

Matched TTPs:

T1566.002 - Spearphishing Link
T1091 - Replication Through Removable Media
T1491 - Defacement
T1197 - BITS Jobs
T1547.008 - LSASS Driver

MITREへのリンク →

CURIUM

Score: 10.37

Matched TTPs:

T1566.002 - Spearphishing Link
T1218.001 - Compiled HTML File
T1059.012 - Hypervisor CLI
T1547.008 - LSASS Driver

MITREへのリンク →

Dragonfly

Score: 5.72

Matched TTPs:

T1566.002 - Spearphishing Link
T1218.010 - Regsvr32
T1059.012 - Hypervisor CLI

MITREへのリンク →

HEXANE

Score: 4.64

Matched TTPs:

T1024 - Custom Cryptographic Protocol
T1091 - Replication Through Removable Media

MITREへのリンク →

LAPSUS$

Score: 12.29

Matched TTPs:

T1024 - Custom Cryptographic Protocol
T1019 - System Firmware
T1136.002 - Domain Account
T1030 - Data Transfer Size Limits

MITREへのリンク →

IndigoZebra

Score: 4.68

Matched TTPs:

T1024 - Custom Cryptographic Protocol
T1608.005 - Link Target

MITREへのリンク →

Gamaredon Group

Score: 7.83

Matched TTPs:

T1091 - Replication Through Removable Media
T1608.005 - Link Target
T1606.001 - Web Cookies

MITREへのリンク →

Threat Group-3390

Score: 8.38

Matched TTPs:

T1091 - Replication Through Removable Media
T1001 - Data Obfuscation
T1218.010 - Regsvr32
T1059.012 - Hypervisor CLI

MITREへのリンク →

BlackByte

Score: 8.97

Matched TTPs:

T1091 - Replication Through Removable Media
T1606.001 - Web Cookies
T1001 - Data Obfuscation

MITREへのリンク →

BITTER

Score: 3.47

Matched TTPs:

T1091 - Replication Through Removable Media
T1218.010 - Regsvr32

MITREへのリンク →

Saint Bear

Score: 8.51

Matched TTPs:

T1091 - Replication Through Removable Media
T1608.005 - Link Target
T1218.010 - Regsvr32
T1030 - Data Transfer Size Limits

MITREへのリンク →

Contagious Interview

Score: 12.07

Matched TTPs:

T1091 - Replication Through Removable Media
T1552.003 - Shell History
T1608.005 - Link Target
T1030 - Data Transfer Size Limits
T1547.008 - LSASS Driver

MITREへのリンク →

Fox Kitten

Score: 3.29

Matched TTPs:

T1491 - Defacement

MITREへのリンク →

Volt Typhoon

Score: 6.91

Matched TTPs:

T1491 - Defacement
T1049 - System Network Connections Discovery

MITREへのリンク →

APT38

Score: 5.05

Matched TTPs:

T1491 - Defacement
T1059.012 - Hypervisor CLI

MITREへのリンク →

Chimera

Score: 3.29

Matched TTPs:

T1491 - Defacement

MITREへのリンク →

UNC3886

Score: 3.95

Matched TTPs:

T1136.002 - Domain Account
T1218.010 - Regsvr32

MITREへのリンク →

Andariel

Score: 5.72

Matched TTPs:

T1136.002 - Domain Account
T1218.010 - Regsvr32
T1059.012 - Hypervisor CLI

MITREへのリンク →

HAFNIUM

Score: 8.30

Matched TTPs:

T1049 - System Network Connections Discovery
T1608.005 - Link Target
T1490 - Inhibit System Recovery

MITREへのリンク →

Axiom

Score: 19.24

Matched TTPs:

T1049 - System Network Connections Discovery
T1562.013 - Disable or Modify Network Device Firewall
T1218.010 - Regsvr32
T1059.012 - Hypervisor CLI
T1189 - Drive-by Compromise
T1160 - Launch Daemon

MITREへのリンク →

INC Ransom

Score: 5.81

Matched TTPs:

T1552.003 - Shell History
T1562.013 - Disable or Modify Network Device Firewall

MITREへのリンク →

Storm-0501

Score: 6.66

Matched TTPs:

T1552.003 - Shell History
T1090.004 - Domain Fronting

MITREへのリンク →

AppleJeus

Score: 5.81

Matched TTPs:

T1552.003 - Shell History
T1562.013 - Disable or Modify Network Device Firewall

MITREへのリンク →

Medusa Group

Score: 4.54

Matched TTPs:

T1552.003 - Shell History
T1608.005 - Link Target

MITREへのリンク →

Play

Score: 5.19

Matched TTPs:

T1552.003 - Shell History
T1490 - Inhibit System Recovery

MITREへのリンク →

Sea Turtle

Score: 7.44

Matched TTPs:

T1562.013 - Disable or Modify Network Device Firewall
T1218.010 - Regsvr32
T1490 - Inhibit System Recovery

MITREへのリンク →

GOLD SOUTHFIELD

Score: 3.29

Matched TTPs:

T1562.013 - Disable or Modify Network Device Firewall

MITREへのリンク →

Winter Vivern

Score: 5.39

Matched TTPs:

T1218.001 - Compiled HTML File
T1059.012 - Hypervisor CLI

MITREへのリンク →

Gorgon Group

Score: 3.15

Matched TTPs:

T1001 - Data Obfuscation

MITREへのリンク →

menuPass

Score: 3.15

Matched TTPs:

T1001 - Data Obfuscation

MITREへのリンク →

APT37

Score: 3.26

Matched TTPs:

T1218.010 - Regsvr32
T1059.012 - Hypervisor CLI

MITREへのリンク →

BRONZE BUTLER

Score: 3.26

Matched TTPs:

T1218.010 - Regsvr32
T1059.012 - Hypervisor CLI

MITREへのリンク →

Tropic Trooper

Score: 4.16

Matched TTPs:

T1218.010 - Regsvr32
T1490 - Inhibit System Recovery

MITREへのリンク →

Darkhotel

Score: 3.26

Matched TTPs:

T1218.010 - Regsvr32
T1059.012 - Hypervisor CLI

MITREへのリンク →

Stealth Falcon

Score: 3.62

Matched TTPs:

T1556.009 - Conditional Access Policies

MITREへのリンク →

Dark Caracal

Score: 4.29

Matched TTPs:

T1059.012 - Hypervisor CLI
T1547.008 - LSASS Driver

MITREへのリンク →

PROMETHIUM

Score: 4.43

Matched TTPs:

T1059.012 - Hypervisor CLI
T1490 - Inhibit System Recovery

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Kimsuky

Score: 0.80

Matched TTPs:

T1091 - Replication Through Removable Media
T1543.003 - Windows Service
T1562.013 - Disable or Modify Network Device Firewall
T1552.003 - Shell History
T1024 - Custom Cryptographic Protocol
T1030 - Data Transfer Size Limits
T1197 - BITS Jobs
T1003.003 - NTDS
T1490 - Inhibit System Recovery
T1608.005 - Link Target
T1001 - Data Obfuscation
T1566.002 - Spearphishing Link

MITREへのリンク →

Scattered Spider

Score: 0.75

Matched TTPs:

T1666 - Modify Cloud Resource Hierarchy
T1552.003 - Shell History
T1136.002 - Domain Account
T1019 - System Firmware
T1030 - Data Transfer Size Limits
T1491 - Defacement
T1197 - BITS Jobs
T1566.002 - Spearphishing Link
T1090.004 - Domain Fronting

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る