Pulse Detail-

Chinese Actors attacks on US Government and EU Media

概要

On May 6 and May 11, 2015, Unit 42 observed two targeted attacks, the first against the U.S. government and the second on a European media company. Threat actors delivered the same document via spear-phishing emails to both organizations. The actors weaponized the delivery document to install a variant of the ‘9002’ Trojan called ‘3102’ that heavily relies on plugins to provide functionality needed by the actors to carry out on their objectives. The 3102 payload used in this attack also appears to be related to the Evilgrab payload delivered in the watering hole attack hosted on the President of Myanmar’s website in May 2015. Additionally, we uncovered ties between the C2 infrastructure and individuals in China active in online hacking forums that claim to work in Trojan development.

Created: 2026-02-23

Indicators

類似Pulses

9002 Trojan via Google Drive Tiny URL (score: 0.70)
Defending the White Elephant (score: 0.70)
SPEAR: A Threat Actor Resurfaces (score: 0.70)
New Attacks Linked to C0d0s0 Group (score: 0.70)
Evilgrab Delivered by Watering Hole (score: 0.70)

このPulseに関連する脅威アクター (事実ベース)

LAPSUS$

Score: 17.09

Matched TTPs:

T1597.002 - Purchase Technical Data
T1591.002 - Business Relationships
T1199 - Trusted Relationship
T1591.004 - Identify Roles
T1003.003 - NTDS

MITREへのリンク →

Contagious Interview

Score: 37.65

Matched TTPs:

T1588.007 - Artificial Intelligence
T1587.001 - Malware
T1608.001 - Upload Malware
T1681 - Search Threat Vendor Data
T1657 - Financial Theft
T1583.006 - Web Services
T1593 - Search Open Websites/Domains
T1585.001 - Social Media Accounts
T1593.001 - Social Media
T1204.004 - Malicious Copy and Paste
T1587 - Develop Capabilities
T1566.003 - Spearphishing via Service

MITREへのリンク →

Scattered Spider

Score: 25.91

Matched TTPs:

T1564.008 - Email Hiding Rules
T1598.003 - Spearphishing Link
T1657 - Financial Theft
T1585.001 - Social Media Accounts
T1598 - Phishing for Information
T1556.009 - Conditional Access Policies
T1538 - Cloud Service Dashboard
T1003.003 - NTDS

MITREへのリンク →

FIN4

Score: 5.58

Matched TTPs:

T1564.008 - Email Hiding Rules
T1566.002 - Spearphishing Link

MITREへのリンク →

Ember Bear

Score: 7.10

Matched TTPs:

T1491.002 - External Defacement
T1190 - Exploit Public-Facing Application
T1203 - Exploitation for Client Execution

MITREへのリンク →

Sandworm Team

Score: 41.99

Matched TTPs:

T1491.002 - External Defacement
T1594 - Search Victim-Owned Websites
T1587.001 - Malware
T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1591.002 - Business Relationships
T1199 - Trusted Relationship
T1593 - Search Open Websites/Domains
T1585.001 - Social Media Accounts
T1592.002 - Software
T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution
T1584.004 - Server
T1003.003 - NTDS

MITREへのリンク →

Volt Typhoon

Score: 31.72

Matched TTPs:

T1584.008 - Network Devices
T1594 - Search Victim-Owned Websites
T1590.004 - Network Topology
T1190 - Exploit Public-Facing Application
T1591 - Gather Victim Org Information
T1593 - Search Open Websites/Domains
T1591.004 - Identify Roles
T1584.004 - Server
T1596.005 - Scan Databases
T1003.003 - NTDS

MITREへのリンク →

APT28

Score: 39.26

Matched TTPs:

T1584.008 - Network Devices
T1598.003 - Spearphishing Link
T1190 - Exploit Public-Facing Application
T1583.006 - Web Services
T1591 - Gather Victim Org Information
T1199 - Trusted Relationship
T1546.015 - Component Object Model Hijacking
T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution
T1598 - Phishing for Information
T1189 - Drive-by Compromise
T1498 - Network Denial of Service
T1221 - Template Injection
T1003.003 - NTDS

MITREへのリンク →

ZIRCONIUM

Score: 15.38

Matched TTPs:

T1584.008 - Network Devices
T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1583.006 - Web Services
T1102.002 - Bidirectional Communication
T1598 - Phishing for Information

MITREへのリンク →

Leviathan

Score: 21.34

Matched TTPs:

T1584.008 - Network Devices
T1566.002 - Spearphishing Link
T1190 - Exploit Public-Facing Application
T1534 - Internal Spearphishing
T1585.001 - Social Media Accounts
T1218.010 - Regsvr32
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1584.004 - Server

MITREへのリンク →

Silent Librarian

Score: 5.74

Matched TTPs:

T1594 - Search Victim-Owned Websites
T1598.003 - Spearphishing Link

MITREへのリンク →

Kimsuky

Score: 57.18

Matched TTPs:

T1594 - Search Victim-Owned Websites
T1587.001 - Malware
T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1593.002 - Search Engines
T1657 - Financial Theft
T1583.006 - Web Services
T1591 - Gather Victim Org Information
T1534 - Internal Spearphishing
T1593 - Search Open Websites/Domains
T1566 - Phishing
T1585.001 - Social Media Accounts
T1218.010 - Regsvr32
T1593.001 - Social Media
T1102.002 - Bidirectional Communication
T1598 - Phishing for Information
T1587 - Develop Capabilities
T1102.001 - Dead Drop Resolver

MITREへのリンク →

EXOTIC LILY

Score: 16.91

Matched TTPs:

T1594 - Search Victim-Owned Websites
T1566.002 - Spearphishing Link
T1608.001 - Upload Malware
T1585.001 - Social Media Accounts
T1593.001 - Social Media
T1203 - Exploitation for Client Execution
T1566.003 - Spearphishing via Service

MITREへのリンク →

TA578

Score: 5.30

Matched TTPs:

T1594 - Search Victim-Owned Websites
T1583.006 - Web Services

MITREへのリンク →

FIN13

Score: 12.27

Matched TTPs:

T1587.001 - Malware
T1590.004 - Network Topology
T1190 - Exploit Public-Facing Application
T1657 - Financial Theft
T1003.003 - NTDS

MITREへのリンク →

Moonstone Sleet

Score: 21.96

Matched TTPs:

T1587.001 - Malware
T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1591 - Gather Victim Org Information
T1585.001 - Social Media Accounts
T1598 - Phishing for Information
T1587 - Develop Capabilities
T1566.003 - Spearphishing via Service

MITREへのリンク →

Indrik Spider

Score: 4.93

Matched TTPs:

T1587.001 - Malware
T1584.004 - Server

MITREへのリンク →

Lazarus Group

Score: 26.73

Matched TTPs:

T1587.001 - Malware
T1566.002 - Spearphishing Link
T1583.006 - Web Services
T1591 - Gather Victim Org Information
T1574.013 - KernelCallbackTable
T1585.001 - Social Media Accounts
T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1584.004 - Server
T1566.003 - Spearphishing via Service

MITREへのリンク →

OilRig

Score: 9.53

Matched TTPs:

T1587.001 - Malware
T1566.002 - Spearphishing Link
T1608.001 - Upload Malware
T1203 - Exploitation for Client Execution
T1566.003 - Spearphishing via Service

MITREへのリンク →

UNC3886

Score: 9.19

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1681 - Search Threat Vendor Data
T1203 - Exploitation for Client Execution

MITREへのリンク →

LuminousMoth

Score: 5.52

Matched TTPs:

T1587.001 - Malware
T1566.002 - Spearphishing Link
T1608.001 - Upload Malware

MITREへのリンク →

Salt Typhoon

Score: 7.41

Matched TTPs:

T1587.001 - Malware
T1590.004 - Network Topology
T1190 - Exploit Public-Facing Application

MITREへのリンク →

APT29

Score: 18.33

Matched TTPs:

T1587.001 - Malware
T1566.002 - Spearphishing Link
T1190 - Exploit Public-Facing Application
T1583.006 - Web Services
T1199 - Trusted Relationship
T1203 - Exploitation for Client Execution
T1090.004 - Domain Fronting
T1566.003 - Spearphishing via Service

MITREへのリンク →

Play

Score: 6.09

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1657 - Financial Theft

MITREへのリンク →

Aoqin Dragon

Score: 3.59

Matched TTPs:

T1587.001 - Malware
T1203 - Exploitation for Client Execution

MITREへのリンク →

RedCurl

Score: 6.29

Matched TTPs:

T1587.001 - Malware
T1566.002 - Spearphishing Link
T1199 - Trusted Relationship

MITREへのリンク →

Cleaver

Score: 4.44

Matched TTPs:

T1587.001 - Malware
T1585.001 - Social Media Accounts

MITREへのリンク →

Moses Staff

Score: 3.57

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application

MITREへのリンク →

Turla

Score: 16.17

Matched TTPs:

T1587.001 - Malware
T1566.002 - Spearphishing Link
T1583.006 - Web Services
T1584.006 - Web Services
T1102.002 - Bidirectional Communication
T1189 - Drive-by Compromise
T1584.004 - Server

MITREへのリンク →

Ke3chang

Score: 5.91

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1003.003 - NTDS

MITREへのリンク →

Mustang Panda

Score: 21.64

Matched TTPs:

T1587.001 - Malware
T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1608 - Stage Capabilities
T1583.006 - Web Services
T1593 - Search Open Websites/Domains
T1203 - Exploitation for Client Execution
T1003.003 - NTDS

MITREへのリンク →

TeamTNT

Score: 4.07

Matched TTPs:

T1587.001 - Malware
T1608.001 - Upload Malware

MITREへのリンク →

FIN7

Score: 18.30

Matched TTPs:

T1587.001 - Malware
T1566.002 - Spearphishing Link
T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1583.006 - Web Services
T1591 - Gather Victim Org Information
T1102.002 - Bidirectional Communication
T1591.004 - Identify Roles

MITREへのリンク →

BlackTech

Score: 4.41

Matched TTPs:

T1566.002 - Spearphishing Link
T1190 - Exploit Public-Facing Application
T1203 - Exploitation for Client Execution

MITREへのリンク →

MuddyWater

Score: 8.82

Matched TTPs:

T1566.002 - Spearphishing Link
T1190 - Exploit Public-Facing Application
T1583.006 - Web Services
T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution

MITREへのリンク →

Confucius

Score: 8.10

Matched TTPs:

T1566.002 - Spearphishing Link
T1583.006 - Web Services
T1203 - Exploitation for Client Execution
T1221 - Template Injection

MITREへのリンク →

Sidewinder

Score: 9.02

Matched TTPs:

T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1598.002 - Spearphishing Attachment
T1203 - Exploitation for Client Execution

MITREへのリンク →

Elderwood

Score: 4.71

Matched TTPs:

T1566.002 - Spearphishing Link
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Machete

Score: 3.21

Matched TTPs:

T1566.002 - Spearphishing Link
T1189 - Drive-by Compromise

MITREへのリンク →

Mustard Tempest

Score: 5.19

Matched TTPs:

T1566.002 - Spearphishing Link
T1608.001 - Upload Malware
T1189 - Drive-by Compromise

MITREへのリンク →

Transparent Tribe

Score: 4.71

Matched TTPs:

T1566.002 - Spearphishing Link
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

APT32

Score: 16.24

Matched TTPs:

T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1583.006 - Web Services
T1585.001 - Social Media Accounts
T1218.010 - Regsvr32
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Magic Hound

Score: 24.80

Matched TTPs:

T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1190 - Exploit Public-Facing Application
T1583.006 - Web Services
T1585.001 - Social Media Accounts
T1592.002 - Software
T1102.002 - Bidirectional Communication
T1189 - Drive-by Compromise
T1591.001 - Determine Physical Locations
T1566.003 - Spearphishing via Service

MITREへのリンク →

Windshift

Score: 5.74

Matched TTPs:

T1566.002 - Spearphishing Link
T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

Cobalt Group

Score: 5.69

Matched TTPs:

T1566.002 - Spearphishing Link
T1218.010 - Regsvr32
T1203 - Exploitation for Client Execution

MITREへのリンク →

TA2541

Score: 5.43

Matched TTPs:

T1566.002 - Spearphishing Link
T1608.001 - Upload Malware
T1583.006 - Web Services

MITREへのリンク →

Earth Lusca

Score: 15.12

Matched TTPs:

T1566.002 - Spearphishing Link
T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1583.006 - Web Services
T1584.006 - Web Services
T1189 - Drive-by Compromise
T1584.004 - Server

MITREへのリンク →

Storm-1811

Score: 13.05

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.004 - Spearphishing Voice
T1667 - Email Bombing
T1566.003 - Spearphishing via Service

MITREへのリンク →

Wizard Spider

Score: 3.79

Matched TTPs:

T1566.002 - Spearphishing Link
T1003.003 - NTDS

MITREへのリンク →

Patchwork

Score: 10.45

Matched TTPs:

T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1102.001 - Dead Drop Resolver

MITREへのリンク →

TA505

Score: 3.42

Matched TTPs:

T1566.002 - Spearphishing Link
T1608.001 - Upload Malware

MITREへのリンク →

LazyScripter

Score: 5.43

Matched TTPs:

T1566.002 - Spearphishing Link
T1608.001 - Upload Malware
T1583.006 - Web Services

MITREへのリンク →

APT42

Score: 3.42

Matched TTPs:

T1566.002 - Spearphishing Link
T1608.001 - Upload Malware

MITREへのリンク →

APT39

Score: 5.31

Matched TTPs:

T1566.002 - Spearphishing Link
T1190 - Exploit Public-Facing Application
T1102.002 - Bidirectional Communication

MITREへのリンク →

Star Blizzard

Score: 13.68

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1598.002 - Spearphishing Attachment
T1593 - Search Open Websites/Domains
T1585.001 - Social Media Accounts

MITREへのリンク →

CURIUM

Score: 12.71

Matched TTPs:

T1598.003 - Spearphishing Link
T1584.006 - Web Services
T1585.001 - Social Media Accounts
T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

Dragonfly

Score: 22.98

Matched TTPs:

T1598.003 - Spearphishing Link
T1190 - Exploit Public-Facing Application
T1591.002 - Business Relationships
T1598.002 - Spearphishing Attachment
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1221 - Template Injection
T1584.004 - Server
T1003.003 - NTDS

MITREへのリンク →

Gamaredon Group

Score: 13.16

Matched TTPs:

T1608.001 - Upload Malware
T1583.006 - Web Services
T1534 - Internal Spearphishing
T1102.002 - Bidirectional Communication
T1221 - Template Injection

MITREへのリンク →

Threat Group-3390

Score: 13.58

Matched TTPs:

T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1608.002 - Upload Tool
T1199 - Trusted Relationship
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

SideCopy

Score: 5.59

Matched TTPs:

T1608.001 - Upload Malware
T1598.002 - Spearphishing Attachment

MITREへのリンク →

BlackByte

Score: 3.44

Matched TTPs:

T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application

MITREへのリンク →

BITTER

Score: 3.47

Matched TTPs:

T1608.001 - Upload Malware
T1203 - Exploitation for Client Execution

MITREへのリンク →

HEXANE

Score: 13.95

Matched TTPs:

T1608.001 - Upload Malware
T1534 - Internal Spearphishing
T1585.001 - Social Media Accounts
T1102.002 - Bidirectional Communication
T1591.004 - Identify Roles

MITREへのリンク →

Saint Bear

Score: 5.48

Matched TTPs:

T1608.001 - Upload Malware
T1583.006 - Web Services
T1203 - Exploitation for Client Execution

MITREへのリンク →

Rocke

Score: 4.76

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1102.001 - Dead Drop Resolver

MITREへのリンク →

GOLD SOUTHFIELD

Score: 7.50

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1199 - Trusted Relationship
T1566 - Phishing

MITREへのリンク →

Medusa Group

Score: 14.82

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1608.002 - Upload Tool
T1657 - Financial Theft
T1583.006 - Web Services
T1585.001 - Social Media Accounts
T1003.003 - NTDS

MITREへのリンク →

Sea Turtle

Score: 8.99

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1199 - Trusted Relationship
T1566 - Phishing
T1203 - Exploitation for Client Execution

MITREへのリンク →

Storm-0501

Score: 10.87

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1657 - Financial Theft
T1218.010 - Regsvr32
T1556.009 - Conditional Access Policies

MITREへのリンク →

Fox Kitten

Score: 6.15

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1585.001 - Social Media Accounts
T1003.003 - NTDS

MITREへのリンク →

Cinnamon Tempest

Score: 3.99

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1657 - Financial Theft

MITREへのリンク →

menuPass

Score: 6.56

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1199 - Trusted Relationship
T1003.003 - NTDS

MITREへのリンク →

ToddyCat

Score: 3.99

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1566.003 - Spearphishing via Service

MITREへのリンク →

Blue Mockingbird

Score: 4.22

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1218.010 - Regsvr32

MITREへのリンク →

Winter Vivern

Score: 6.86

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1584.006 - Web Services
T1189 - Drive-by Compromise

MITREへのリンク →

INC Ransom

Score: 7.28

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1657 - Financial Theft
T1566 - Phishing

MITREへのリンク →

Axiom

Score: 12.55

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1566 - Phishing
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1001.002 - Steganography

MITREへのリンク →

APT41

Score: 12.72

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1203 - Exploitation for Client Execution
T1596.005 - Scan Databases
T1003.003 - NTDS
T1102.001 - Dead Drop Resolver

MITREへのリンク →

HAFNIUM

Score: 8.57

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1583.006 - Web Services
T1199 - Trusted Relationship
T1003.003 - NTDS

MITREへのリンク →

MoustachedBouncer

Score: 4.54

Matched TTPs:

T1659 - Content Injection

MITREへのリンク →

AppleJeus

Score: 5.81

Matched TTPs:

T1657 - Financial Theft
T1566 - Phishing

MITREへのリンク →

Water Galura

Score: 4.86

Matched TTPs:

T1657 - Financial Theft
T1585.001 - Social Media Accounts

MITREへのリンク →

POLONIUM

Score: 7.16

Matched TTPs:

T1583.006 - Web Services
T1199 - Trusted Relationship
T1102.002 - Bidirectional Communication

MITREへのリンク →

Inception

Score: 7.39

Matched TTPs:

T1218.010 - Regsvr32
T1203 - Exploitation for Client Execution
T1221 - Template Injection

MITREへのリンク →

APT19

Score: 4.51

Matched TTPs:

T1218.010 - Regsvr32
T1189 - Drive-by Compromise

MITREへのリンク →

Andariel

Score: 7.10

Matched TTPs:

T1592.002 - Software
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

APT37

Score: 5.66

Matched TTPs:

T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

APT12

Score: 3.89

Matched TTPs:

T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution

MITREへのリンク →

BRONZE BUTLER

Score: 6.54

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1102.001 - Dead Drop Resolver

MITREへのリンク →

Tropic Trooper

Score: 4.65

Matched TTPs:

T1203 - Exploitation for Client Execution
T1221 - Template Injection

MITREへのリンク →

Darkhotel

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

RTM

Score: 5.05

Matched TTPs:

T1189 - Drive-by Compromise
T1102.001 - Dead Drop Resolver

MITREへのリンク →

Dark Caracal

Score: 4.29

Matched TTPs:

T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

Daggerfly

Score: 4.60

Matched TTPs:

T1189 - Drive-by Compromise
T1584.004 - Server

MITREへのリンク →

DarkHydrus

Score: 3.15

Matched TTPs:

T1221 - Template Injection

MITREへのリンク →

FIN6

Score: 4.86

Matched TTPs:

T1003.003 - NTDS
T1566.003 - Spearphishing via Service

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Kimsuky

Score: 0.84

Matched TTPs:

T1587.001 - Malware
T1102.002 - Bidirectional Communication
T1190 - Exploit Public-Facing Application
T1585.001 - Social Media Accounts
T1102.001 - Dead Drop Resolver
T1657 - Financial Theft
T1587 - Develop Capabilities
T1593.002 - Search Engines
T1566.002 - Spearphishing Link
T1593.001 - Social Media
T1598.003 - Spearphishing Link
T1583.006 - Web Services
T1218.010 - Regsvr32
T1608.001 - Upload Malware
T1594 - Search Victim-Owned Websites
T1598 - Phishing for Information
T1534 - Internal Spearphishing
T1593 - Search Open Websites/Domains
T1566 - Phishing
T1591 - Gather Victim Org Information

MITREへのリンク →

Sandworm Team

Score: 0.66

Matched TTPs:

T1566.002 - Spearphishing Link
T1587.001 - Malware
T1203 - Exploitation for Client Execution
T1593 - Search Open Websites/Domains
T1102.002 - Bidirectional Communication
T1190 - Exploit Public-Facing Application
T1585.001 - Social Media Accounts
T1592.002 - Software
T1608.001 - Upload Malware
T1594 - Search Victim-Owned Websites
T1591.002 - Business Relationships
T1199 - Trusted Relationship
T1003.003 - NTDS
T1584.004 - Server
T1491.002 - External Defacement
T1598.003 - Spearphishing Link

MITREへのリンク →

APT28

Score: 0.63

Matched TTPs:

T1189 - Drive-by Compromise
T1203 - Exploitation for Client Execution
T1102.002 - Bidirectional Communication
T1498 - Network Denial of Service
T1190 - Exploit Public-Facing Application
T1221 - Template Injection
T1584.008 - Network Devices
T1199 - Trusted Relationship
T1598 - Phishing for Information
T1003.003 - NTDS
T1591 - Gather Victim Org Information
T1598.003 - Spearphishing Link
T1583.006 - Web Services
T1546.015 - Component Object Model Hijacking

MITREへのリンク →

Contagious Interview

Score: 0.56

Matched TTPs:

T1587.001 - Malware
T1588.007 - Artificial Intelligence
T1593 - Search Open Websites/Domains
T1593.001 - Social Media
T1585.001 - Social Media Accounts
T1681 - Search Threat Vendor Data
T1608.001 - Upload Malware
T1657 - Financial Theft
T1587 - Develop Capabilities
T1566.003 - Spearphishing via Service
T1583.006 - Web Services
T1204.004 - Malicious Copy and Paste

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る

Chinese Actors attacks on US Government and EU Media

概要

Indicators

類似Pulses

このPulseに関連する脅威アクター (事実ベース)

このPulseに関連する脅威アクター (推論ベース)

Related CVEs

Pulse – 脅威アクター グラフ

Pulse – 脅威アクターグラフ