FBI Flash #68 (PlugX)
概要
FBI Flash #68 (PlugX Malware)
The FBI has obtained information regarding intrusions that have compromised various U.S. Government and commercial industries including aerospace, entertainment/media, healthcare, and telecommunications networks. The intrusions resulted in the theft of sensitive U.S government and business information including bulk personally identifiable information (PII). These intrusions involved infrastructure that emanated from China and utilized a specific malware family called "PlugX", a remote access tool (RAT) that has been in existence since 2008. Open source reporting revealed malicious cyber actors almost exclusively in China are using Plug X. Security researchers have linked the use of PlugX to cyber groups tracked as Aurora Panda/APT 17, Hurricane Panda, Emissary Panda, Nightshade Panda/Apt 9, Pale Panda, and Predator Panda. PlugX, if detected, should be immediately flagged, reported to the FBI, and given the highest priority for enhanced mitigation.
Created: 2026-02-23
Indicators
Indicatorsは見つかっていない。
類似Pulses
このPulseに関連する脅威アクター (事実ベース)
Score: 19.01
Matched TTPs:
- T1491.002 - External Defacement
- T1114 - Email Collection
- T1195 - Supply Chain Compromise
- T1560 - Archive Collected Data
- T1585 - Establish Accounts
- T1070.004 - File Deletion
MITREへのリンク →
Score: 26.14
Matched TTPs:
- T1491.002 - External Defacement
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1195 - Supply Chain Compromise
- T1588.002 - Tool
- T1585.001 - Social Media Accounts
- T1195.002 - Compromise Software Supply Chain
- T1102.002 - Bidirectional Communication
- T1070.004 - File Deletion
- T1584.004 - Server
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 4.47
Matched TTPs:
- T1114 - Email Collection
- T1588.002 - Tool
MITREへのリンク →
Score: 13.60
Matched TTPs:
- T1114 - Email Collection
- T1588.002 - Tool
- T1585.001 - Social Media Accounts
- T1102.002 - Bidirectional Communication
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 10.98
Matched TTPs:
- T1114 - Email Collection
- T1657 - Financial Theft
- T1588.002 - Tool
- T1585.001 - Social Media Accounts
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 23.29
Matched TTPs:
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1657 - Financial Theft
- T1588.002 - Tool
- T1585.001 - Social Media Accounts
- T1102.002 - Bidirectional Communication
- T1585 - Establish Accounts
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
- T1204.001 - Malicious Link
- T1102.001 - Dead Drop Resolver
MITREへのリンク →
Score: 7.12
Matched TTPs:
- T1587.001 - Malware
- T1657 - Financial Theft
- T1588.002 - Tool
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 9.34
Matched TTPs:
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1585.001 - Social Media Accounts
- T1195.002 - Compromise Software Supply Chain
MITREへのリンク →
Score: 6.58
Matched TTPs:
- T1587.001 - Malware
- T1584.004 - Server
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 23.71
Matched TTPs:
- T1587.001 - Malware
- T1560 - Archive Collected Data
- T1588.002 - Tool
- T1585.001 - Social Media Accounts
- T1102.002 - Bidirectional Communication
- T1070.004 - File Deletion
- T1584.004 - Server
- T1027.007 - Dynamic API Resolution
- T1021.001 - Remote Desktop Protocol
- T1008 - Fallback Channels
MITREへのリンク →
Score: 20.09
Matched TTPs:
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1681 - Search Threat Vendor Data
- T1657 - Financial Theft
- T1588.002 - Tool
- T1585.001 - Social Media Accounts
- T1585 - Establish Accounts
- T1070.004 - File Deletion
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 22.89
Matched TTPs:
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1195 - Supply Chain Compromise
- T1069.001 - Local Groups
- T1588.002 - Tool
- T1027.005 - Indicator Removal from Tools
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
- T1204.001 - Malicious Link
- T1008 - Fallback Channels
MITREへのリンク →
Score: 18.33
Matched TTPs:
- T1587.001 - Malware
- T1681 - Search Threat Vendor Data
- T1205.001 - Port Knocking
- T1027.005 - Indicator Removal from Tools
- T1070.004 - File Deletion
- T1008 - Fallback Channels
MITREへのリンク →
Score: 8.87
Matched TTPs:
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1560 - Archive Collected Data
- T1588.002 - Tool
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 9.53
Matched TTPs:
- T1587.001 - Malware
- T1550.003 - Pass the Ticket
- T1588.002 - Tool
- T1070.004 - File Deletion
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 6.85
Matched TTPs:
- T1587.001 - Malware
- T1657 - Financial Theft
- T1588.002 - Tool
- T1070.004 - File Deletion
MITREへのリンク →
Score: 4.84
Matched TTPs:
- T1587.001 - Malware
- T1070.004 - File Deletion
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 5.29
Matched TTPs:
- T1587.001 - Malware
- T1588.002 - Tool
- T1585.001 - Social Media Accounts
MITREへのリンク →
Score: 15.84
Matched TTPs:
- T1587.001 - Malware
- T1069.001 - Local Groups
- T1588.002 - Tool
- T1027.005 - Indicator Removal from Tools
- T1102.002 - Bidirectional Communication
- T1584.004 - Server
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 5.54
Matched TTPs:
- T1587.001 - Malware
- T1560 - Archive Collected Data
- T1588.002 - Tool
MITREへのリンク →
Score: 11.79
Matched TTPs:
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1588.002 - Tool
- T1070.004 - File Deletion
- T1027.007 - Dynamic API Resolution
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 5.45
Matched TTPs:
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1070.004 - File Deletion
MITREへのリンク →
Score: 16.69
Matched TTPs:
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1588.002 - Tool
- T1195.002 - Compromise Software Supply Chain
- T1102.002 - Bidirectional Communication
- T1021.001 - Remote Desktop Protocol
- T1204.001 - Malicious Link
- T1008 - Fallback Channels
MITREへのリンク →
Score: 4.18
Matched TTPs:
- T1608.001 - Upload Malware
- T1588.002 - Tool
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 7.02
Matched TTPs:
- T1608.001 - Upload Malware
- T1588.002 - Tool
- T1584.004 - Server
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 7.87
Matched TTPs:
- T1608.001 - Upload Malware
- T1608.006 - SEO Poisoning
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 3.33
Matched TTPs:
- T1608.001 - Upload Malware
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 7.96
Matched TTPs:
- T1608.001 - Upload Malware
- T1588.002 - Tool
- T1102.002 - Bidirectional Communication
- T1070.004 - File Deletion
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 5.16
Matched TTPs:
- T1608.001 - Upload Malware
- T1588.002 - Tool
- T1585.001 - Social Media Accounts
MITREへのリンク →
Score: 11.26
Matched TTPs:
- T1608.001 - Upload Malware
- T1608.002 - Upload Tool
- T1588.002 - Tool
- T1195.002 - Compromise Software Supply Chain
- T1070.004 - File Deletion
MITREへのリンク →
Score: 4.18
Matched TTPs:
- T1608.001 - Upload Malware
- T1588.002 - Tool
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 7.59
Matched TTPs:
- T1608.001 - Upload Malware
- T1560 - Archive Collected Data
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 14.34
Matched TTPs:
- T1608.001 - Upload Malware
- T1560 - Archive Collected Data
- T1550.003 - Pass the Ticket
- T1588.002 - Tool
- T1585.001 - Social Media Accounts
- T1070.004 - File Deletion
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 12.36
Matched TTPs:
- T1608.001 - Upload Malware
- T1069.001 - Local Groups
- T1588.002 - Tool
- T1585.001 - Social Media Accounts
- T1102.002 - Bidirectional Communication
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 3.33
Matched TTPs:
- T1608.001 - Upload Malware
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 5.67
Matched TTPs:
- T1608.001 - Upload Malware
- T1585.001 - Social Media Accounts
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 17.41
Matched TTPs:
- T1608.002 - Upload Tool
- T1657 - Financial Theft
- T1588.002 - Tool
- T1585.001 - Social Media Accounts
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
- T1218.014 - MMC
MITREへのリンク →
Score: 12.23
Matched TTPs:
- T1560 - Archive Collected Data
- T1588.002 - Tool
- T1195.002 - Compromise Software Supply Chain
- T1070.004 - File Deletion
- T1584.004 - Server
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 14.27
Matched TTPs:
- T1560 - Archive Collected Data
- T1588.002 - Tool
- T1027.005 - Indicator Removal from Tools
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
- T1204.001 - Malicious Link
- T1102.001 - Dead Drop Resolver
MITREへのリンク →
Score: 4.24
Matched TTPs:
- T1560 - Archive Collected Data
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 17.25
Matched TTPs:
- T1560 - Archive Collected Data
- T1588.002 - Tool
- T1102.002 - Bidirectional Communication
- T1070.004 - File Deletion
- T1204.001 - Malicious Link
- T1669 - Wi-Fi Networks
- T1211 - Exploitation for Defense Evasion
MITREへのリンク →
Score: 6.47
Matched TTPs:
- T1560 - Archive Collected Data
- T1588.002 - Tool
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 6.47
Matched TTPs:
- T1560 - Archive Collected Data
- T1588.002 - Tool
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 10.77
Matched TTPs:
- T1560 - Archive Collected Data
- T1585.001 - Social Media Accounts
- T1584.004 - Server
- T1021.001 - Remote Desktop Protocol
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 9.36
Matched TTPs:
- T1550.003 - Pass the Ticket
- T1588.002 - Tool
- T1070.004 - File Deletion
- T1102.001 - Dead Drop Resolver
MITREへのリンク →
Score: 6.40
Matched TTPs:
- T1657 - Financial Theft
- T1588.002 - Tool
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 3.37
Matched TTPs:
- T1657 - Financial Theft
- T1588.002 - Tool
MITREへのリンク →
Score: 4.17
Matched TTPs:
- T1657 - Financial Theft
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 4.86
Matched TTPs:
- T1657 - Financial Theft
- T1585.001 - Social Media Accounts
MITREへのリンク →
Score: 4.13
Matched TTPs:
- T1205.001 - Port Knocking
MITREへのリンク →
Score: 6.34
Matched TTPs:
- T1552.006 - Group Policy Preferences
- T1588.002 - Tool
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 9.37
Matched TTPs:
- T1552.006 - Group Policy Preferences
- T1588.002 - Tool
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 7.03
Matched TTPs:
- T1069.001 - Local Groups
- T1588.002 - Tool
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 9.86
Matched TTPs:
- T1069.001 - Local Groups
- T1588.002 - Tool
- T1070.004 - File Deletion
- T1584.004 - Server
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 4.61
Matched TTPs:
- T1588.002 - Tool
- T1102.002 - Bidirectional Communication
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 13.53
Matched TTPs:
- T1588.002 - Tool
- T1195.002 - Compromise Software Supply Chain
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
- T1008 - Fallback Channels
- T1102.001 - Dead Drop Resolver
MITREへのリンク →
Score: 5.24
Matched TTPs:
- T1588.002 - Tool
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 7.64
Matched TTPs:
- T1588.002 - Tool
- T1102.002 - Bidirectional Communication
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 4.00
Matched TTPs:
- T1588.002 - Tool
- T1027.005 - Indicator Removal from Tools
MITREへのリンク →
Score: 8.17
Matched TTPs:
- T1588.002 - Tool
- T1195.002 - Compromise Software Supply Chain
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 3.25
Matched TTPs:
- T1588.002 - Tool
- T1102.002 - Bidirectional Communication
MITREへのリンク →
Score: 3.88
Matched TTPs:
- T1588.002 - Tool
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 3.88
Matched TTPs:
- T1588.002 - Tool
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 3.59
Matched TTPs:
- T1588.002 - Tool
- T1070.004 - File Deletion
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 3.88
Matched TTPs:
- T1588.002 - Tool
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 3.25
Matched TTPs:
- T1588.002 - Tool
- T1102.002 - Bidirectional Communication
MITREへのリンク →
Score: 3.15
Matched TTPs:
- T1027.005 - Indicator Removal from Tools
MITREへのリンク →
Score: 7.54
Matched TTPs:
- T1027.005 - Indicator Removal from Tools
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 7.43
Matched TTPs:
- T1585.001 - Social Media Accounts
- T1585 - Establish Accounts
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 7.12
Matched TTPs:
- T1195.002 - Compromise Software Supply Chain
- T1584.004 - Server
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 3.76
Matched TTPs:
- T1102.002 - Bidirectional Communication
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 3.44
Matched TTPs:
- T1585 - Establish Accounts
MITREへのリンク →
Score: 3.03
Matched TTPs:
- T1070.004 - File Deletion
- T1021.001 - Remote Desktop Protocol
MITREへのリンク →
Score: 4.67
Matched TTPs:
- T1070.004 - File Deletion
- T1102.001 - Dead Drop Resolver
MITREへのリンク →
Score: 4.13
Matched TTPs:
- T1564.005 - Hidden File System
MITREへのリンク →
Score: 4.13
Matched TTPs:
- T1564.005 - Hidden File System
MITREへのリンク →
Score: 3.29
Matched TTPs:
- T1102.001 - Dead Drop Resolver
MITREへのリンク →
Score: 4.13
Matched TTPs:
- T1211 - Exploitation for Defense Evasion
MITREへのリンク →
このPulseに関連する脅威アクター (推論ベース)
Score: 0.86
Matched TTPs:
- T1204.001 - Malicious Link
- T1195 - Supply Chain Compromise
- T1584.004 - Server
- T1070.004 - File Deletion
- T1491.002 - External Defacement
- T1195.002 - Compromise Software Supply Chain
- T1585.001 - Social Media Accounts
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1588.002 - Tool
- T1102.002 - Bidirectional Communication
MITREへのリンク →
Score: 0.78
Matched TTPs:
- T1021.001 - Remote Desktop Protocol
- T1027.007 - Dynamic API Resolution
- T1584.004 - Server
- T1070.004 - File Deletion
- T1008 - Fallback Channels
- T1587.001 - Malware
- T1585.001 - Social Media Accounts
- T1560 - Archive Collected Data
- T1588.002 - Tool
- T1102.002 - Bidirectional Communication
MITREへのリンク →
Score: 0.75
Matched TTPs:
- T1204.001 - Malicious Link
- T1021.001 - Remote Desktop Protocol
- T1102.001 - Dead Drop Resolver
- T1070.004 - File Deletion
- T1585.001 - Social Media Accounts
- T1657 - Financial Theft
- T1585 - Establish Accounts
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1588.002 - Tool
- T1102.002 - Bidirectional Communication
MITREへのリンク →
Score: 0.74
Matched TTPs:
- T1204.001 - Malicious Link
- T1021.001 - Remote Desktop Protocol
- T1195 - Supply Chain Compromise
- T1070.004 - File Deletion
- T1069.001 - Local Groups
- T1008 - Fallback Channels
- T1027.005 - Indicator Removal from Tools
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1588.002 - Tool
MITREへのリンク →
Score: 0.64
Matched TTPs:
- T1204.001 - Malicious Link
- T1681 - Search Threat Vendor Data
- T1070.004 - File Deletion
- T1585.001 - Social Media Accounts
- T1657 - Financial Theft
- T1585 - Establish Accounts
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1588.002 - Tool
MITREへのリンク →
Score: 0.63
Matched TTPs:
- T1070.004 - File Deletion
- T1681 - Search Threat Vendor Data
- T1008 - Fallback Channels
- T1027.005 - Indicator Removal from Tools
- T1205.001 - Port Knocking
- T1587.001 - Malware
MITREへのリンク →
Score: 0.62
Matched TTPs:
- T1195 - Supply Chain Compromise
- T1070.004 - File Deletion
- T1491.002 - External Defacement
- T1585 - Establish Accounts
- T1560 - Archive Collected Data
- T1114 - Email Collection
MITREへのリンク →
Score: 0.61
Matched TTPs:
- T1204.001 - Malicious Link
- T1669 - Wi-Fi Networks
- T1070.004 - File Deletion
- T1211 - Exploitation for Defense Evasion
- T1560 - Archive Collected Data
- T1588.002 - Tool
- T1102.002 - Bidirectional Communication
MITREへのリンク →
Score: 0.60
Matched TTPs:
- T1204.001 - Malicious Link
- T1021.001 - Remote Desktop Protocol
- T1195.002 - Compromise Software Supply Chain
- T1008 - Fallback Channels
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1588.002 - Tool
- T1102.002 - Bidirectional Communication
MITREへのリンク →
Score: 0.59
Matched TTPs:
- T1021.001 - Remote Desktop Protocol
- T1070.004 - File Deletion
- T1585.001 - Social Media Accounts
- T1657 - Financial Theft
- T1608.002 - Upload Tool
- T1218.014 - MMC
- T1588.002 - Tool
MITREへのリンク →
Score: 0.59
Matched TTPs:
- T1204.001 - Malicious Link
- T1584.004 - Server
- T1069.001 - Local Groups
- T1027.005 - Indicator Removal from Tools
- T1587.001 - Malware
- T1588.002 - Tool
- T1102.002 - Bidirectional Communication
MITREへのリンク →
Related CVEs
このPulseに見つかったCVEはありません。
Pulse – 脅威アクター グラフ
← Pulse一覧に戻る
Trusted Design