Trusted Design

CVE-2015-5122 Exploited in Strategic Web Compromise

概要

On July 14, FireEye researchers discovered attacks exploiting the Adobe Flash vulnerability CVE-2015-5122, just four days after Adobe released a patch. CVE-2015-5122 was the second Adobe Flash zero-day revealed in the leak of HackingTeam’s internal data. The campaign targeted Japanese organizations by using at least two legitimate Japanese websites to host a strategic web compromise (SWC), where victims ultimately downloaded a variant of the SOGU malware.

Created: 2026-02-23

Indicators

類似Pulses

Operation Clandestine Wolf – Adobe Flash Zero-Day APT3 Phishing (score: 0.78)
An analysis of exploit supply chains and digital quartermasters (score: 0.75)
Killing a Zero-Day in the Egg: Adobe CVE-2016-1019 (score: 0.74)
Latest Flash Exploit Used in Pawn Storm (score: 0.73)
Watering Hole Attack on Aerospace Firm Exploits CVE-2015-5122 (score: 0.72)

このPulseに関連する脅威アクター (事実ベース)

Ember Bear

Score: 9.76

Matched TTPs:

T1491.002 - External Defacement
T1203 - Exploitation for Client Execution
T1588.005 - Exploits

MITREへのリンク →

Sandworm Team

Score: 15.05

Matched TTPs:

T1491.002 - External Defacement
T1588.006 - Vulnerabilities
T1199 - Trusted Relationship
T1203 - Exploitation for Client Execution
T1584.004 - Server

MITREへのリンク →

Mustard Tempest

Score: 10.84

Matched TTPs:

T1583.008 - Malvertising
T1189 - Drive-by Compromise
T1608.006 - SEO Poisoning

MITREへのリンク →

APT41

Score: 4.78

Matched TTPs:

T1069 - Permission Groups Discovery
T1203 - Exploitation for Client Execution

MITREへのリンク →

Scattered Spider

Score: 3.29

Matched TTPs:

T1069 - Permission Groups Discovery

MITREへのリンク →

TA505

Score: 3.29

Matched TTPs:

T1069 - Permission Groups Discovery

MITREへのリンク →

Volt Typhoon

Score: 12.89

Matched TTPs:

T1069 - Permission Groups Discovery
T1588.006 - Vulnerabilities
T1584.004 - Server
T1090.001 - Internal Proxy

MITREへのリンク →

APT3

Score: 4.78

Matched TTPs:

T1069 - Permission Groups Discovery
T1203 - Exploitation for Client Execution

MITREへのリンク →

FIN13

Score: 6.21

Matched TTPs:

T1069 - Permission Groups Discovery
T1090.001 - Internal Proxy

MITREへのリンク →

Storm-0501

Score: 3.84

Matched TTPs:

T1588.006 - Vulnerabilities

MITREへのリンク →

APT29

Score: 15.15

Matched TTPs:

T1550.003 - Pass the Ticket
T1199 - Trusted Relationship
T1203 - Exploitation for Client Execution
T1090.004 - Domain Fronting
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT32

Score: 9.85

Matched TTPs:

T1550.003 - Pass the Ticket
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

BRONZE BUTLER

Score: 7.10

Matched TTPs:

T1550.003 - Pass the Ticket
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

APT28

Score: 10.54

Matched TTPs:

T1199 - Trusted Relationship
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1498 - Network Denial of Service

MITREへのリンク →

Threat Group-3390

Score: 6.01

Matched TTPs:

T1199 - Trusted Relationship
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Sea Turtle

Score: 4.24

Matched TTPs:

T1199 - Trusted Relationship
T1203 - Exploitation for Client Execution

MITREへのリンク →

Dragonfly

Score: 6.09

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1584.004 - Server

MITREへのリンク →

Andariel

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

EXOTIC LILY

Score: 4.02

Matched TTPs:

T1203 - Exploitation for Client Execution
T1566.003 - Spearphishing via Service

MITREへのリンク →

Lazarus Group

Score: 22.27

Matched TTPs:

T1203 - Exploitation for Client Execution
T1001.003 - Protocol or Service Impersonation
T1189 - Drive-by Compromise
T1584.004 - Server
T1027.007 - Dynamic API Resolution
T1566.003 - Spearphishing via Service
T1090.001 - Internal Proxy
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

Patchwork

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Axiom

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Higaisa

Score: 8.27

Matched TTPs:

T1203 - Exploitation for Client Execution
T1001.003 - Protocol or Service Impersonation
T1090.001 - Internal Proxy

MITREへのリンク →

Leviathan

Score: 6.09

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1584.004 - Server

MITREへのリンク →

APT37

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Mustang Panda

Score: 12.22

Matched TTPs:

T1203 - Exploitation for Client Execution
T1001.003 - Protocol or Service Impersonation
T1027.007 - Dynamic API Resolution
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

Transparent Tribe

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Elderwood

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Darkhotel

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

OilRig

Score: 11.30

Matched TTPs:

T1203 - Exploitation for Client Execution
T1137.004 - Outlook Home Page
T1566.003 - Spearphishing via Service
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

APT33

Score: 4.24

Matched TTPs:

T1203 - Exploitation for Client Execution
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

Windshift

Score: 4.29

Matched TTPs:

T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

Earth Lusca

Score: 4.60

Matched TTPs:

T1189 - Drive-by Compromise
T1584.004 - Server

MITREへのリンク →

Dark Caracal

Score: 4.29

Matched TTPs:

T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

Turla

Score: 7.53

Matched TTPs:

T1189 - Drive-by Compromise
T1584.004 - Server
T1090.001 - Internal Proxy

MITREへのリンク →

CURIUM

Score: 4.29

Matched TTPs:

T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

Daggerfly

Score: 4.60

Matched TTPs:

T1189 - Drive-by Compromise
T1584.004 - Server

MITREへのリンク →

Magic Hound

Score: 4.29

Matched TTPs:

T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

Kimsuky

Score: 4.13

Matched TTPs:

T1588.005 - Exploits

MITREへのリンク →

Contagious Interview

Score: 5.27

Matched TTPs:

T1566.003 - Spearphishing via Service
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

FIN6

Score: 5.27

Matched TTPs:

T1566.003 - Spearphishing via Service
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Lazarus Group

Score: 0.81

Matched TTPs:

T1566.003 - Spearphishing via Service
T1584.004 - Server
T1203 - Exploitation for Client Execution
T1027.007 - Dynamic API Resolution
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol
T1001.003 - Protocol or Service Impersonation
T1090.001 - Internal Proxy
T1189 - Drive-by Compromise

MITREへのリンク →

Sandworm Team

Score: 0.60

Matched TTPs:

T1588.006 - Vulnerabilities
T1584.004 - Server
T1203 - Exploitation for Client Execution
T1199 - Trusted Relationship
T1491.002 - External Defacement

MITREへのリンク →

APT29

Score: 0.59

Matched TTPs:

T1566.003 - Spearphishing via Service
T1203 - Exploitation for Client Execution
T1199 - Trusted Relationship
T1550.003 - Pass the Ticket
T1090.004 - Domain Fronting

MITREへのリンク →

Related CVEs

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る