Pulse Detail-

Signed Dridex Campaign

概要

Malware authors use various means to make their malware look similar to legitimate software. One such approach involves signing a malware sample with a digital certificate. Recently we saw Dridex malware authors using this technique while reviewing the samples in our Cloud Sandbox. Dridex is a banking Trojan which typically arrives to a system via malicious spam email with a Microsoft Office file as an attachment. These files will have embedded macros that lead to the download and installation of the Dridex Trojan. Dridex then attempts to steal the victim's banking credentials and system information.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

New Dridex infection vector identified (score: 0.79)
Drixed / Dridex - Sophisticated Banking Malware (score: 0.77)
Banking Malware Dridex Arrives via Phishing Email (score: 0.73)
Banking Trojan DRIDEX (score: 0.70)
Dridex actors distributing the Shifu banking Trojan (score: 0.70)

このPulseに関連する脅威アクター (事実ベース)

Lazarus Group

Score: 30.28

Matched TTPs:

T1027.009 - Embedded Payloads
T1587.001 - Malware
T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1553.002 - Code Signing
T1140 - Deobfuscate/Decode Files or Information
T1218 - System Binary Proxy Execution
T1588.002 - Tool
T1001.003 - Protocol or Service Impersonation
T1027.007 - Dynamic API Resolution
T1124 - System Time Discovery
T1529 - System Shutdown/Reboot

MITREへのリンク →

TA577

Score: 5.20

Matched TTPs:

T1027.009 - Embedded Payloads
T1204.001 - Malicious Link

MITREへのリンク →

Moonstone Sleet

Score: 11.14

Matched TTPs:

T1027.009 - Embedded Payloads
T1587.001 - Malware
T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1140 - Deobfuscate/Decode Files or Information
T1608.001 - Upload Malware

MITREへのリンク →

Mustard Tempest

Score: 7.87

Matched TTPs:

T1583.008 - Malvertising
T1608.001 - Upload Malware
T1204.001 - Malicious Link

MITREへのリンク →

Kimsuky

Score: 26.22

Matched TTPs:

T1587.001 - Malware
T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1553.002 - Code Signing
T1140 - Deobfuscate/Decode Files or Information
T1608.001 - Upload Malware
T1657 - Financial Theft
T1588.002 - Tool
T1566 - Phishing
T1055.012 - Process Hollowing
T1588.003 - Code Signing Certificates
T1204.001 - Malicious Link
T1078.003 - Local Accounts

MITREへのリンク →

FIN13

Score: 7.04

Matched TTPs:

T1587.001 - Malware
T1140 - Deobfuscate/Decode Files or Information
T1657 - Financial Theft
T1588.002 - Tool

MITREへのリンク →

Contagious Interview

Score: 17.97

Matched TTPs:

T1587.001 - Malware
T1204.002 - Malicious File
T1608.001 - Upload Malware
T1497 - Virtualization/Sandbox Evasion
T1657 - Financial Theft
T1588.002 - Tool
T1204.004 - Malicious Copy and Paste
T1204.001 - Malicious Link

MITREへのリンク →

OilRig

Score: 22.06

Matched TTPs:

T1587.001 - Malware
T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1553.002 - Code Signing
T1140 - Deobfuscate/Decode Files or Information
T1608.001 - Upload Malware
T1195 - Supply Chain Compromise
T1588.002 - Tool
T1555.004 - Windows Credential Manager
T1588.003 - Code Signing Certificates
T1204.001 - Malicious Link

MITREへのリンク →

UNC3886

Score: 7.15

Matched TTPs:

T1587.001 - Malware
T1588.001 - Malware
T1124 - System Time Discovery

MITREへのリンク →

LuminousMoth

Score: 10.67

Matched TTPs:

T1587.001 - Malware
T1553.002 - Code Signing
T1608.001 - Upload Malware
T1588.001 - Malware
T1588.002 - Tool
T1204.001 - Malicious Link

MITREへのリンク →

Sandworm Team

Score: 13.35

Matched TTPs:

T1587.001 - Malware
T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1140 - Deobfuscate/Decode Files or Information
T1608.001 - Upload Malware
T1195 - Supply Chain Compromise
T1588.002 - Tool
T1204.001 - Malicious Link

MITREへのリンク →

APT29

Score: 19.94

Matched TTPs:

T1587.001 - Malware
T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1550.003 - Pass the Ticket
T1649 - Steal or Forge Authentication Certificates
T1588.002 - Tool
T1204.001 - Malicious Link
T1078.004 - Cloud Accounts
T1078.003 - Local Accounts

MITREへのリンク →

Play

Score: 8.13

Matched TTPs:

T1587.001 - Malware
T1657 - Financial Theft
T1588.002 - Tool
T1078.003 - Local Accounts

MITREへのリンク →

Aoqin Dragon

Score: 3.73

Matched TTPs:

T1587.001 - Malware
T1204.002 - Malicious File
T1588.002 - Tool

MITREへのリンク →

RedCurl

Score: 9.25

Matched TTPs:

T1587.001 - Malware
T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1056.002 - GUI Input Capture
T1204.001 - Malicious Link

MITREへのリンク →

Moses Staff

Score: 4.88

Matched TTPs:

T1587.001 - Malware
T1553.002 - Code Signing
T1588.002 - Tool

MITREへのリンク →

Turla

Score: 17.21

Matched TTPs:

T1587.001 - Malware
T1140 - Deobfuscate/Decode Files or Information
T1588.001 - Malware
T1588.002 - Tool
T1555.004 - Windows Credential Manager
T1204.001 - Malicious Link
T1124 - System Time Discovery
T1078.003 - Local Accounts

MITREへのリンク →

Ke3chang

Score: 7.44

Matched TTPs:

T1587.001 - Malware
T1140 - Deobfuscate/Decode Files or Information
T1588.002 - Tool
T1078.004 - Cloud Accounts

MITREへのリンク →

Mustang Panda

Score: 22.57

Matched TTPs:

T1587.001 - Malware
T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1553.002 - Code Signing
T1140 - Deobfuscate/Decode Files or Information
T1608.001 - Upload Malware
T1588.002 - Tool
T1001.003 - Protocol or Service Impersonation
T1588.003 - Code Signing Certificates
T1027.007 - Dynamic API Resolution
T1204.001 - Malicious Link

MITREへのリンク →

TeamTNT

Score: 5.64

Matched TTPs:

T1587.001 - Malware
T1140 - Deobfuscate/Decode Files or Information
T1608.001 - Upload Malware

MITREへのリンク →

FIN7

Score: 21.24

Matched TTPs:

T1587.001 - Malware
T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1553.002 - Code Signing
T1140 - Deobfuscate/Decode Files or Information
T1608.001 - Upload Malware
T1674 - Input Injection
T1588.002 - Tool
T1204.001 - Malicious Link
T1124 - System Time Discovery
T1078.003 - Local Accounts

MITREへのリンク →

Malteiro

Score: 5.75

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1140 - Deobfuscate/Decode Files or Information
T1657 - Financial Theft

MITREへのリンク →

Machete

Score: 6.31

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1218.007 - Msiexec
T1204.001 - Malicious Link

MITREへのリンク →

Elderwood

Score: 3.02

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1204.001 - Malicious Link

MITREへのリンク →

Transparent Tribe

Score: 3.02

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1204.001 - Malicious Link

MITREへのリンク →

WIRTE

Score: 4.08

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1140 - Deobfuscate/Decode Files or Information
T1588.002 - Tool

MITREへのリンク →

CURIUM

Score: 4.25

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1124 - System Time Discovery

MITREへのリンク →

Tropic Trooper

Score: 5.90

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1140 - Deobfuscate/Decode Files or Information
T1078.003 - Local Accounts

MITREへのリンク →

menuPass

Score: 9.17

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1553.002 - Code Signing
T1140 - Deobfuscate/Decode Files or Information
T1588.002 - Tool
T1055.012 - Process Hollowing

MITREへのリンク →

HEXANE

Score: 3.61

Matched TTPs:

T1204.002 - Malicious File
T1608.001 - Upload Malware
T1588.002 - Tool

MITREへのリンク →

FIN8

Score: 7.02

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1588.002 - Tool
T1588.003 - Code Signing Certificates
T1204.001 - Malicious Link

MITREへのリンク →

Threat Group-3390

Score: 15.51

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1140 - Deobfuscate/Decode Files or Information
T1608.001 - Upload Malware
T1588.002 - Tool
T1055.012 - Process Hollowing
T1588.003 - Code Signing Certificates
T1027.015 - Compression

MITREへのリンク →

BITTER

Score: 4.48

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1588.002 - Tool

MITREへのリンク →

APT37

Score: 9.42

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1036.001 - Invalid Code Signature
T1529 - System Shutdown/Reboot

MITREへのリンク →

LazyScripter

Score: 7.45

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1588.001 - Malware
T1204.001 - Malicious Link

MITREへのリンク →

PROMETHIUM

Score: 9.23

Matched TTPs:

T1204.002 - Malicious File
T1553.002 - Code Signing
T1587.002 - Code Signing Certificates
T1078.003 - Local Accounts

MITREへのリンク →

TA505

Score: 15.09

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1553.002 - Code Signing
T1218.007 - Msiexec
T1140 - Deobfuscate/Decode Files or Information
T1608.001 - Upload Malware
T1588.001 - Malware
T1588.002 - Tool
T1204.001 - Malicious Link

MITREへのリンク →

APT39

Score: 5.44

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1140 - Deobfuscate/Decode Files or Information
T1588.002 - Tool
T1204.001 - Malicious Link

MITREへのリンク →

Star Blizzard

Score: 4.48

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1588.002 - Tool

MITREへのリンク →

Higaisa

Score: 12.82

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1140 - Deobfuscate/Decode Files or Information
T1001.003 - Protocol or Service Impersonation
T1124 - System Time Discovery
T1027.015 - Compression

MITREへのリンク →

Rancor

Score: 4.95

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1218.007 - Msiexec

MITREへのリンク →

Wizard Spider

Score: 12.58

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1553.002 - Code Signing
T1588.002 - Tool
T1555.004 - Windows Credential Manager
T1588.003 - Code Signing Certificates
T1204.001 - Malicious Link

MITREへのリンク →

FIN4

Score: 7.16

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1056.002 - GUI Input Capture
T1204.001 - Malicious Link

MITREへのリンク →

Cobalt Group

Score: 3.87

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1588.002 - Tool
T1204.001 - Malicious Link

MITREへのリンク →

Storm-1811

Score: 3.21

Matched TTPs:

T1204.002 - Malicious File
T1140 - Deobfuscate/Decode Files or Information
T1588.002 - Tool

MITREへのリンク →

EXOTIC LILY

Score: 5.00

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1204.001 - Malicious Link

MITREへのリンク →

Saint Bear

Score: 10.78

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1553.002 - Code Signing
T1608.001 - Upload Malware
T1497 - Virtualization/Sandbox Evasion
T1204.001 - Malicious Link

MITREへのリンク →

FIN6

Score: 4.45

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1553.002 - Code Signing
T1588.002 - Tool

MITREへのリンク →

Patchwork

Score: 12.80

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1553.002 - Code Signing
T1587.002 - Code Signing Certificates
T1588.002 - Tool
T1055.012 - Process Hollowing
T1204.001 - Malicious Link

MITREへのリンク →

APT28

Score: 17.04

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1140 - Deobfuscate/Decode Files or Information
T1588.002 - Tool
T1137.002 - Office Test
T1204.001 - Malicious Link
T1078.004 - Cloud Accounts
T1211 - Exploitation for Defense Evasion

MITREへのリンク →

Gorgon Group

Score: 7.23

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1140 - Deobfuscate/Decode Files or Information
T1588.002 - Tool
T1055.012 - Process Hollowing

MITREへのリンク →

APT19

Score: 4.08

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1140 - Deobfuscate/Decode Files or Information
T1588.002 - Tool

MITREへのリンク →

TA2541

Score: 14.61

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1588.001 - Malware
T1588.002 - Tool
T1055.012 - Process Hollowing
T1204.001 - Malicious Link
T1027.015 - Compression

MITREへのリンク →

Earth Lusca

Score: 9.00

Matched TTPs:

T1204.002 - Malicious File
T1140 - Deobfuscate/Decode Files or Information
T1608.001 - Upload Malware
T1588.001 - Malware
T1588.002 - Tool
T1204.001 - Malicious Link

MITREへのリンク →

SideCopy

Score: 7.77

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1614 - System Location Discovery

MITREへのリンク →

Mofang

Score: 6.17

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1204.001 - Malicious Link
T1027.015 - Compression

MITREへのリンク →

Leviathan

Score: 9.68

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1553.002 - Code Signing
T1140 - Deobfuscate/Decode Files or Information
T1204.001 - Malicious Link
T1027.015 - Compression

MITREへのリンク →

Andariel

Score: 4.12

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1588.001 - Malware

MITREへのリンク →

BRONZE BUTLER

Score: 10.52

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1140 - Deobfuscate/Decode Files or Information
T1550.003 - Pass the Ticket
T1588.002 - Tool
T1124 - System Time Discovery

MITREへのリンク →

APT38

Score: 16.88

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1218.007 - Msiexec
T1140 - Deobfuscate/Decode Files or Information
T1588.002 - Tool
T1036.006 - Space after Filename
T1204.001 - Malicious Link
T1529 - System Shutdown/Reboot

MITREへのリンク →

MuddyWater

Score: 9.06

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1140 - Deobfuscate/Decode Files or Information
T1588.002 - Tool
T1027.004 - Compile After Delivery
T1204.001 - Malicious Link

MITREへのリンク →

Molerats

Score: 12.96

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1553.002 - Code Signing
T1218.007 - Msiexec
T1140 - Deobfuscate/Decode Files or Information
T1204.001 - Malicious Link
T1027.015 - Compression

MITREへのリンク →

Gamaredon Group

Score: 18.72

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1140 - Deobfuscate/Decode Files or Information
T1608.001 - Upload Malware
T1588.002 - Tool
T1001 - Data Obfuscation
T1027.004 - Compile After Delivery
T1204.001 - Malicious Link
T1027.015 - Compression

MITREへのリンク →

Darkhotel

Score: 11.60

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1553.002 - Code Signing
T1140 - Deobfuscate/Decode Files or Information
T1497 - Virtualization/Sandbox Evasion
T1124 - System Time Discovery

MITREへのリンク →

APT32

Score: 12.36

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1608.001 - Upload Malware
T1550.003 - Pass the Ticket
T1588.002 - Tool
T1204.001 - Malicious Link
T1078.003 - Local Accounts

MITREへのリンク →

The White Company

Score: 4.25

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1124 - System Time Discovery

MITREへのリンク →

APT33

Score: 6.80

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1588.002 - Tool
T1204.001 - Malicious Link
T1078.004 - Cloud Accounts

MITREへのリンク →

Silence

Score: 4.45

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1553.002 - Code Signing
T1588.002 - Tool

MITREへのリンク →

Sidewinder

Score: 5.61

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1204.001 - Malicious Link
T1124 - System Time Discovery

MITREへのリンク →

Confucius

Score: 3.02

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1204.001 - Malicious Link

MITREへのリンク →

BlackTech

Score: 7.02

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1588.002 - Tool
T1588.003 - Code Signing Certificates
T1204.001 - Malicious Link

MITREへのリンク →

Windshift

Score: 7.16

Matched TTPs:

T1204.002 - Malicious File
T1566.001 - Spearphishing Attachment
T1036.001 - Invalid Code Signature
T1204.001 - Malicious Link

MITREへのリンク →

APT41

Score: 3.66

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1553.002 - Code Signing
T1588.002 - Tool

MITREへのリンク →

Winter Vivern

Score: 3.80

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1140 - Deobfuscate/Decode Files or Information
T1204.001 - Malicious Link

MITREへのリンク →

APT1

Score: 4.18

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1588.001 - Malware
T1588.002 - Tool

MITREへのリンク →

Scattered Spider

Score: 10.69

Matched TTPs:

T1553.002 - Code Signing
T1588.001 - Malware
T1657 - Financial Theft
T1588.002 - Tool
T1078.004 - Cloud Accounts

MITREへのリンク →

Medusa Group

Score: 13.47

Matched TTPs:

T1553.002 - Code Signing
T1657 - Financial Theft
T1588.002 - Tool
T1529 - System Shutdown/Reboot
T1218.014 - MMC

MITREへのリンク →

Daggerfly

Score: 7.14

Matched TTPs:

T1553.002 - Code Signing
T1587.002 - Code Signing Certificates
T1204.001 - Malicious Link

MITREへのリンク →

ZIRCONIUM

Score: 8.80

Matched TTPs:

T1218.007 - Msiexec
T1140 - Deobfuscate/Decode Files or Information
T1204.001 - Malicious Link
T1124 - System Time Discovery

MITREへのリンク →

Volt Typhoon

Score: 13.27

Matched TTPs:

T1140 - Deobfuscate/Decode Files or Information
T1218 - System Binary Proxy Execution
T1588.002 - Tool
T1614 - System Location Discovery
T1124 - System Time Discovery

MITREへのリンク →

BlackByte

Score: 6.69

Matched TTPs:

T1140 - Deobfuscate/Decode Files or Information
T1608.001 - Upload Malware
T1055.012 - Process Hollowing

MITREへのリンク →

Cinnamon Tempest

Score: 4.94

Matched TTPs:

T1140 - Deobfuscate/Decode Files or Information
T1657 - Financial Theft
T1588.002 - Tool

MITREへのリンク →

Rocke

Score: 5.19

Matched TTPs:

T1140 - Deobfuscate/Decode Files or Information
T1027.004 - Compile After Delivery

MITREへのリンク →

Ember Bear

Score: 6.30

Matched TTPs:

T1195 - Supply Chain Compromise
T1588.001 - Malware

MITREへのリンク →

LAPSUS$

Score: 6.24

Matched TTPs:

T1588.001 - Malware
T1588.002 - Tool
T1078.004 - Cloud Accounts

MITREへのリンク →

Metador

Score: 3.31

Matched TTPs:

T1588.001 - Malware
T1588.002 - Tool

MITREへのリンク →

Aquatic Panda

Score: 3.31

Matched TTPs:

T1588.001 - Malware
T1588.002 - Tool

MITREへのリンク →

BackdoorDiplomacy

Score: 3.31

Matched TTPs:

T1588.001 - Malware
T1588.002 - Tool

MITREへのリンク →

INC Ransom

Score: 6.66

Matched TTPs:

T1657 - Financial Theft
T1588.002 - Tool
T1566 - Phishing

MITREへのリンク →

Storm-0501

Score: 5.45

Matched TTPs:

T1657 - Financial Theft
T1078.004 - Cloud Accounts

MITREへのリンク →

AppleJeus

Score: 5.81

Matched TTPs:

T1657 - Financial Theft
T1566 - Phishing

MITREへのリンク →

Sea Turtle

Score: 14.96

Matched TTPs:

T1588.002 - Tool
T1566 - Phishing
T1608.003 - Install Digital Certificate
T1027.004 - Compile After Delivery
T1078.003 - Local Accounts

MITREへのリンク →

FIN10

Score: 3.52

Matched TTPs:

T1588.002 - Tool
T1078.003 - Local Accounts

MITREへのリンク →

Chimera

Score: 3.44

Matched TTPs:

T1588.002 - Tool
T1124 - System Time Discovery

MITREへのリンク →

Axiom

Score: 3.29

Matched TTPs:

T1566 - Phishing

MITREへのリンク →

GOLD SOUTHFIELD

Score: 3.29

Matched TTPs:

T1566 - Phishing

MITREへのリンク →

Stealth Falcon

Score: 3.62

Matched TTPs:

T1555.004 - Windows Credential Manager

MITREへのリンク →

HAFNIUM

Score: 5.59

Matched TTPs:

T1078.004 - Cloud Accounts
T1078.003 - Local Accounts

MITREへのリンク →

Velvet Ant

Score: 6.80

Matched TTPs:

T1078.003 - Local Accounts
T1211 - Exploitation for Defense Evasion

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Lazarus Group

Score: 0.76

Matched TTPs:

T1588.002 - Tool
T1529 - System Shutdown/Reboot
T1553.002 - Code Signing
T1140 - Deobfuscate/Decode Files or Information
T1566.001 - Spearphishing Attachment
T1027.007 - Dynamic API Resolution
T1204.002 - Malicious File
T1124 - System Time Discovery
T1587.001 - Malware
T1001.003 - Protocol or Service Impersonation
T1027.009 - Embedded Payloads
T1218 - System Binary Proxy Execution

MITREへのリンク →

Kimsuky

Score: 0.66

Matched TTPs:

T1588.002 - Tool
T1566 - Phishing
T1204.001 - Malicious Link
T1553.002 - Code Signing
T1140 - Deobfuscate/Decode Files or Information
T1657 - Financial Theft
T1566.001 - Spearphishing Attachment
T1055.012 - Process Hollowing
T1204.002 - Malicious File
T1587.001 - Malware
T1588.003 - Code Signing Certificates
T1608.001 - Upload Malware
T1078.003 - Local Accounts

MITREへのリンク →

FIN7

Score: 0.61

Matched TTPs:

T1588.002 - Tool
T1204.001 - Malicious Link
T1553.002 - Code Signing
T1140 - Deobfuscate/Decode Files or Information
T1566.001 - Spearphishing Attachment
T1124 - System Time Discovery
T1204.002 - Malicious File
T1674 - Input Injection
T1587.001 - Malware
T1608.001 - Upload Malware
T1078.003 - Local Accounts

MITREへのリンク →

Mustang Panda

Score: 0.56

Matched TTPs:

T1588.002 - Tool
T1204.001 - Malicious Link
T1553.002 - Code Signing
T1140 - Deobfuscate/Decode Files or Information
T1566.001 - Spearphishing Attachment
T1027.007 - Dynamic API Resolution
T1204.002 - Malicious File
T1587.001 - Malware
T1588.003 - Code Signing Certificates
T1608.001 - Upload Malware
T1001.003 - Protocol or Service Impersonation

MITREへのリンク →

OilRig

Score: 0.55

Matched TTPs:

T1588.002 - Tool
T1204.001 - Malicious Link
T1553.002 - Code Signing
T1140 - Deobfuscate/Decode Files or Information
T1566.001 - Spearphishing Attachment
T1204.002 - Malicious File
T1195 - Supply Chain Compromise
T1555.004 - Windows Credential Manager
T1587.001 - Malware
T1588.003 - Code Signing Certificates
T1608.001 - Upload Malware

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る

Signed Dridex Campaign

概要

Indicators

類似Pulses

このPulseに関連する脅威アクター (事実ベース)

このPulseに関連する脅威アクター (推論ベース)

Related CVEs

Pulse – 脅威アクター グラフ

Pulse – 脅威アクターグラフ