Trusted Design

More information from the FIN4 group attacking public companies

概要

With access to business critical information, senior executives and consultants are often said to be valuable targets for threat actors tasked with obtaining sensitive business secrets. FIN4 is a financially motivated threat actor which has consistently targeted this population. Expanded with indicators generated by Alienvault Labs

Created: 2026-02-23

Indicators

類似Pulses

Threat Group-3390 Targets Organizations for Cyberespionage (score: 0.57)
Operation Iron Tiger (score: 0.56)
New Attacks Linked to C0d0s0 Group (score: 0.56)
Stealthy Cyberespionage Campaign Attacks With Social Engineering (score: 0.56)
Threat Spotlight: Group 72 Opening the ZxShell (2014) (score: 0.54)

このPulseに関連する脅威アクター (事実ベース)

LAPSUS$

Score: 15.85

Matched TTPs:

T1216.001 - PubPrn
T1193 - Spearphishing Attachment
T1218.008 - Odbcconf
T1065 - Uncommonly Used Port

MITREへのリンク →

Ember Bear

Score: 3.62

Matched TTPs:

T1578 - Modify Cloud Compute Infrastructure

MITREへのリンク →

Silent Librarian

Score: 6.91

Matched TTPs:

T1578 - Modify Cloud Compute Infrastructure
T1114 - Email Collection

MITREへのリンク →

Magic Hound

Score: 10.68

Matched TTPs:

T1578 - Modify Cloud Compute Infrastructure
T1098.002 - Additional Email Delegate Permissions
T1547.008 - LSASS Driver

MITREへのリンク →

Scattered Spider

Score: 6.14

Matched TTPs:

T1578 - Modify Cloud Compute Infrastructure
T1552.003 - Shell History

MITREへのリンク →

Kimsuky

Score: 20.76

Matched TTPs:

T1114 - Email Collection
T1683.001 - Written Content
T1552.003 - Shell History
T1057 - Process Discovery
T1102.003 - One-Way Communication
T1690 - Prevent Command History Logging

MITREへのリンク →

Volt Typhoon

Score: 17.32

Matched TTPs:

T1114 - Email Collection
T1686.003 - Windows Host Firewall
T1057 - Process Discovery
T1102.003 - One-Way Communication
T1065 - Uncommonly Used Port

MITREへのリンク →

EXOTIC LILY

Score: 14.19

Matched TTPs:

T1114 - Email Collection
T1149 - LC_MAIN Hijacking
T1690 - Prevent Command History Logging
T1547.008 - LSASS Driver

MITREへのリンク →

Sandworm Team

Score: 14.26

Matched TTPs:

T1114 - Email Collection
T1686.003 - Windows Host Firewall
T1193 - Spearphishing Attachment
T1102.003 - One-Way Communication

MITREへのリンク →

TA578

Score: 3.29

Matched TTPs:

T1114 - Email Collection

MITREへのリンク →

Storm-0501

Score: 10.50

Matched TTPs:

T1686.003 - Windows Host Firewall
T1552.003 - Shell History
T1518.001 - Security Software Discovery

MITREへのリンク →

UNC3886

Score: 4.13

Matched TTPs:

T1021.006 - Windows Remote Management

MITREへのリンク →

Contagious Interview

Score: 20.15

Matched TTPs:

T1021.006 - Windows Remote Management
T1218.008 - Odbcconf
T1552.003 - Shell History
T1102.003 - One-Way Communication
T1690 - Prevent Command History Logging
T1547.008 - LSASS Driver

MITREへのリンク →

Dragonfly

Score: 3.84

Matched TTPs:

T1193 - Spearphishing Attachment

MITREへのリンク →

HAFNIUM

Score: 7.98

Matched TTPs:

T1218.008 - Odbcconf
T1518.001 - Security Software Discovery

MITREへのリンク →

APT42

Score: 6.37

Matched TTPs:

T1677 - Poisoned Pipeline Execution
T1128 - Netsh Helper DLL

MITREへのリンク →

Mustang Panda

Score: 6.91

Matched TTPs:

T1677 - Poisoned Pipeline Execution
T1102.003 - One-Way Communication

MITREへのリンク →

APT5

Score: 3.62

Matched TTPs:

T1677 - Poisoned Pipeline Execution

MITREへのリンク →

Lazarus Group

Score: 9.43

Matched TTPs:

T1677 - Poisoned Pipeline Execution
T1057 - Process Discovery
T1547.008 - LSASS Driver

MITREへのリンク →

Medusa Group

Score: 5.27

Matched TTPs:

T1552.003 - Shell History
T1128 - Netsh Helper DLL

MITREへのリンク →

APT33

Score: 4.13

Matched TTPs:

T1567.001 - Exfiltration to Code Repository

MITREへのリンク →

Wizard Spider

Score: 4.13

Matched TTPs:

T1567.001 - Exfiltration to Code Repository

MITREへのリンク →

APT28

Score: 7.82

Matched TTPs:

T1057 - Process Discovery
T1546.007 - Netsh Helper DLL

MITREへのリンク →

Moonstone Sleet

Score: 5.81

Matched TTPs:

T1057 - Process Discovery
T1547.008 - LSASS Driver

MITREへのリンク →

FIN7

Score: 6.91

Matched TTPs:

T1057 - Process Discovery
T1065 - Uncommonly Used Port

MITREへのリンク →

Star Blizzard

Score: 3.29

Matched TTPs:

T1102.003 - One-Way Communication

MITREへのリンク →

Gamaredon Group

Score: 4.54

Matched TTPs:

T1061 - Graphical User Interface

MITREへのリンク →

OilRig

Score: 5.27

Matched TTPs:

T1128 - Netsh Helper DLL
T1547.008 - LSASS Driver

MITREへのリンク →

FIN6

Score: 5.27

Matched TTPs:

T1128 - Netsh Helper DLL
T1547.008 - LSASS Driver

MITREへのリンク →

HEXANE

Score: 3.62

Matched TTPs:

T1065 - Uncommonly Used Port

MITREへのリンク →

Equation

Score: 4.13

Matched TTPs:

T1130 - Install Root Certificate

MITREへのリンク →

Strider

Score: 4.13

Matched TTPs:

T1130 - Install Root Certificate

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Kimsuky

Score: 0.81

Matched TTPs:

T1114 - Email Collection
T1057 - Process Discovery
T1690 - Prevent Command History Logging
T1552.003 - Shell History
T1102.003 - One-Way Communication
T1683.001 - Written Content

MITREへのリンク →

Contagious Interview

Score: 0.77

Matched TTPs:

T1218.008 - Odbcconf
T1690 - Prevent Command History Logging
T1021.006 - Windows Remote Management
T1552.003 - Shell History
T1547.008 - LSASS Driver
T1102.003 - One-Way Communication

MITREへのリンク →

Volt Typhoon

Score: 0.69

Matched TTPs:

T1114 - Email Collection
T1057 - Process Discovery
T1686.003 - Windows Host Firewall
T1065 - Uncommonly Used Port
T1102.003 - One-Way Communication

MITREへのリンク →

LAPSUS$

Score: 0.65

Matched TTPs:

T1216.001 - PubPrn
T1218.008 - Odbcconf
T1065 - Uncommonly Used Port
T1193 - Spearphishing Attachment

MITREへのリンク →

Sandworm Team

Score: 0.60

Matched TTPs:

T1114 - Email Collection
T1102.003 - One-Way Communication
T1686.003 - Windows Host Firewall
T1193 - Spearphishing Attachment

MITREへのリンク →

EXOTIC LILY

Score: 0.59

Matched TTPs:

T1547.008 - LSASS Driver
T1114 - Email Collection
T1149 - LC_MAIN Hijacking
T1690 - Prevent Command History Logging

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る