Trusted Design

Dyreza Campaigners target Fulfillment and Warehousing Industry

概要

Within the last week, the now infamous “man-in-the-browser” (MITB) banking malware Dyreza appears to have significantly expanded its target set of entities from which to steal credentials. Dyreza originally focused on intercepting end-user bank logins, and later expanded to job hunting, file hosting, domain registration, website hosting, file hosting, tax services, and online retail categories [2]. As of September 17th Dyreza now counts an additional twenty organizations directly involved in Fulfillment and Warehousing; four software companies that support Fulfillment and Warehousing; five Wholesale Computer Distributors; and its credential theft triggers include Apple, Iron Mountain, OtterBox and Badge Graphics Systems and many other well-known consumer- and business-facing technology and service brands.

Created: 2026-02-23

Indicators

類似Pulses

Dyre: Emerging threat on financial fraud landscape (score: 0.68)
Dyre emerges as main financial Trojan threat (score: 0.62)
US Banks Targeted with Trickbot Trojan - FlashPoint (score: 0.62)
Dyre Malware Campaigners Innovate with Distribution Techniques (score: 0.61)
Dridex actors distributing the Shifu banking Trojan (score: 0.60)

このPulseに関連する脅威アクター (事実ベース)

Ember Bear

Score: 10.72

Matched TTPs:

T1564.008 - Email Hiding Rules
T1136.002 - Domain Account
T1003.003 - NTDS

MITREへのリンク →

Sandworm Team

Score: 10.72

Matched TTPs:

T1564.008 - Email Hiding Rules
T1193 - Spearphishing Attachment
T1122 - Component Object Model Hijacking

MITREへのリンク →

Mustard Tempest

Score: 9.59

Matched TTPs:

T1682 - Query Public AI Services
T1059.012 - Hypervisor CLI
T1053.002 - At

MITREへのリンク →

MoustachedBouncer

Score: 4.54

Matched TTPs:

T1055.003 - Thread Execution Hijacking

MITREへのリンク →

Winter Vivern

Score: 6.30

Matched TTPs:

T1548 - Abuse Elevation Control Mechanism
T1059.012 - Hypervisor CLI

MITREへのリンク →

Dragonfly

Score: 5.61

Matched TTPs:

T1193 - Spearphishing Attachment
T1059.012 - Hypervisor CLI

MITREへのリンク →

LAPSUS$

Score: 16.62

Matched TTPs:

T1193 - Spearphishing Attachment
T1136.002 - Domain Account
T1122 - Component Object Model Hijacking
T1592.003 - Firmware
T1557.002 - ARP Cache Poisoning

MITREへのリンク →

TA2541

Score: 8.36

Matched TTPs:

T1136.002 - Domain Account
T1128 - Netsh Helper DLL
T1546.017 - Udev Rules

MITREへのリンク →

APT1

Score: 5.74

Matched TTPs:

T1136.002 - Domain Account
T1053.002 - At

MITREへのリンク →

Andariel

Score: 4.22

Matched TTPs:

T1136.002 - Domain Account
T1059.012 - Hypervisor CLI

MITREへのリンク →

Turla

Score: 10.51

Matched TTPs:

T1136.002 - Domain Account
T1556.009 - Conditional Access Policies
T1059.012 - Hypervisor CLI
T1490 - Inhibit System Recovery

MITREへのリンク →

Earth Lusca

Score: 4.22

Matched TTPs:

T1136.002 - Domain Account
T1059.012 - Hypervisor CLI

MITREへのリンク →

Scattered Spider

Score: 16.18

Matched TTPs:

T1136.002 - Domain Account
T1552.003 - Shell History
T1090.004 - Domain Fronting
T1557.002 - ARP Cache Poisoning
T1565.002 - Transmitted Data Manipulation

MITREへのリンク →

APT29

Score: 16.32

Matched TTPs:

T1592.004 - Client Configurations
T1122 - Component Object Model Hijacking
T1218.009 - Regsvcs/Regasm
T1547.008 - LSASS Driver
T1490 - Inhibit System Recovery

MITREへのリンク →

APT32

Score: 8.28

Matched TTPs:

T1592.004 - Client Configurations
T1059.012 - Hypervisor CLI
T1490 - Inhibit System Recovery

MITREへのリンク →

BRONZE BUTLER

Score: 8.90

Matched TTPs:

T1592.004 - Client Configurations
T1059.012 - Hypervisor CLI
T1008 - Fallback Channels

MITREへのリンク →

Contagious Interview

Score: 12.51

Matched TTPs:

T1552.003 - Shell History
T1565.002 - Transmitted Data Manipulation
T1651 - Cloud Administration Command
T1547.008 - LSASS Driver

MITREへのリンク →

Kimsuky

Score: 21.97

Matched TTPs:

T1552.003 - Shell History
T1565.002 - Transmitted Data Manipulation
T1526 - Cloud Service Discovery
T1003.003 - NTDS
T1008 - Fallback Channels
T1053.002 - At
T1490 - Inhibit System Recovery

MITREへのリンク →

Storm-0501

Score: 9.58

Matched TTPs:

T1552.003 - Shell History
T1090.004 - Domain Fronting
T1565.002 - Transmitted Data Manipulation

MITREへのリンク →

Medusa Group

Score: 8.89

Matched TTPs:

T1552.003 - Shell History
T1128 - Netsh Helper DLL
T1216 - System Script Proxy Execution

MITREへのリンク →

Play

Score: 5.19

Matched TTPs:

T1552.003 - Shell History
T1490 - Inhibit System Recovery

MITREへのリンク →

APT28

Score: 16.22

Matched TTPs:

T1122 - Component Object Model Hijacking
T1592.003 - Firmware
T1059.012 - Hypervisor CLI
T1055.008 - Ptrace System Calls
T1566.003 - Spearphishing via Service

MITREへのリンク →

Threat Group-3390

Score: 10.81

Matched TTPs:

T1122 - Component Object Model Hijacking
T1059.012 - Hypervisor CLI
T1526 - Cloud Service Discovery
T1546.017 - Udev Rules

MITREへのリンク →

RedCurl

Score: 5.49

Matched TTPs:

T1122 - Component Object Model Hijacking
T1128 - Netsh Helper DLL

MITREへのリンク →

HAFNIUM

Score: 9.54

Matched TTPs:

T1122 - Component Object Model Hijacking
T1055.008 - Ptrace System Calls
T1490 - Inhibit System Recovery

MITREへのリンク →

Sea Turtle

Score: 5.41

Matched TTPs:

T1122 - Component Object Model Hijacking
T1490 - Inhibit System Recovery

MITREへのリンク →

Magic Hound

Score: 11.01

Matched TTPs:

T1592.003 - Firmware
T1059.012 - Hypervisor CLI
T1547.008 - LSASS Driver
T1053.002 - At

MITREへのリンク →

Leviathan

Score: 8.36

Matched TTPs:

T1592.003 - Firmware
T1059.012 - Hypervisor CLI
T1546.017 - Udev Rules

MITREへのリンク →

Chimera

Score: 3.44

Matched TTPs:

T1592.003 - Firmware

MITREへのリンク →

Velvet Ant

Score: 9.54

Matched TTPs:

T1128 - Netsh Helper DLL
T1490 - Inhibit System Recovery
T1566.003 - Spearphishing via Service

MITREへのリンク →

Tropic Trooper

Score: 5.41

Matched TTPs:

T1128 - Netsh Helper DLL
T1490 - Inhibit System Recovery

MITREへのリンク →

OilRig

Score: 12.04

Matched TTPs:

T1128 - Netsh Helper DLL
T1556.009 - Conditional Access Policies
T1526 - Cloud Service Discovery
T1547.008 - LSASS Driver

MITREへのリンク →

FIN6

Score: 5.27

Matched TTPs:

T1128 - Netsh Helper DLL
T1547.008 - LSASS Driver

MITREへのリンク →

FIN8

Score: 5.90

Matched TTPs:

T1128 - Netsh Helper DLL
T1526 - Cloud Service Discovery

MITREへのリンク →

Stealth Falcon

Score: 3.62

Matched TTPs:

T1556.009 - Conditional Access Policies

MITREへのリンク →

Wizard Spider

Score: 6.77

Matched TTPs:

T1556.009 - Conditional Access Policies
T1526 - Cloud Service Discovery

MITREへのリンク →

Storm-1811

Score: 5.45

Matched TTPs:

T1565.002 - Transmitted Data Manipulation
T1547.008 - LSASS Driver

MITREへのリンク →

Mustang Panda

Score: 10.21

Matched TTPs:

T1565.002 - Transmitted Data Manipulation
T1526 - Cloud Service Discovery
T1055.005 - Thread Local Storage

MITREへのリンク →

RTM

Score: 7.98

Matched TTPs:

T1565.002 - Transmitted Data Manipulation
T1059.012 - Hypervisor CLI
T1008 - Fallback Channels

MITREへのリンク →

Transparent Tribe

Score: 5.05

Matched TTPs:

T1059.012 - Hypervisor CLI
T1053.002 - At

MITREへのリンク →

Windshift

Score: 4.29

Matched TTPs:

T1059.012 - Hypervisor CLI
T1547.008 - LSASS Driver

MITREへのリンク →

APT38

Score: 5.39

Matched TTPs:

T1059.012 - Hypervisor CLI
T1216 - System Script Proxy Execution

MITREへのリンク →

Axiom

Score: 6.30

Matched TTPs:

T1059.012 - Hypervisor CLI
T1160 - Launch Daemon

MITREへのリンク →

Dark Caracal

Score: 4.29

Matched TTPs:

T1059.012 - Hypervisor CLI
T1547.008 - LSASS Driver

MITREへのリンク →

Patchwork

Score: 5.05

Matched TTPs:

T1059.012 - Hypervisor CLI
T1008 - Fallback Channels

MITREへのリンク →

Lazarus Group

Score: 12.04

Matched TTPs:

T1059.012 - Hypervisor CLI
T1055.005 - Thread Local Storage
T1547.008 - LSASS Driver
T1216 - System Script Proxy Execution

MITREへのリンク →

APT37

Score: 5.39

Matched TTPs:

T1059.012 - Hypervisor CLI
T1216 - System Script Proxy Execution

MITREへのリンク →

CURIUM

Score: 4.29

Matched TTPs:

T1059.012 - Hypervisor CLI
T1547.008 - LSASS Driver

MITREへのリンク →

PROMETHIUM

Score: 4.43

Matched TTPs:

T1059.012 - Hypervisor CLI
T1490 - Inhibit System Recovery

MITREへのリンク →

Equation

Score: 4.13

Matched TTPs:

T1130 - Install Root Certificate

MITREへのリンク →

Strider

Score: 4.13

Matched TTPs:

T1130 - Install Root Certificate

MITREへのリンク →

BlackTech

Score: 3.15

Matched TTPs:

T1526 - Cloud Service Discovery

MITREへのリンク →

Rocke

Score: 3.29

Matched TTPs:

T1008 - Fallback Channels

MITREへのリンク →

APT41

Score: 3.29

Matched TTPs:

T1008 - Fallback Channels

MITREへのリンク →

SideCopy

Score: 3.29

Matched TTPs:

T1053.002 - At

MITREへのリンク →

Molerats

Score: 3.15

Matched TTPs:

T1546.017 - Udev Rules

MITREへのリンク →

Gamaredon Group

Score: 3.15

Matched TTPs:

T1546.017 - Udev Rules

MITREへのリンク →

Higaisa

Score: 3.15

Matched TTPs:

T1546.017 - Udev Rules

MITREへのリンク →

Mofang

Score: 3.15

Matched TTPs:

T1546.017 - Udev Rules

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Kimsuky

Score: 0.79

Matched TTPs:

T1526 - Cloud Service Discovery
T1552.003 - Shell History
T1003.003 - NTDS
T1053.002 - At
T1490 - Inhibit System Recovery
T1008 - Fallback Channels
T1565.002 - Transmitted Data Manipulation

MITREへのリンク →

LAPSUS$

Score: 0.66

Matched TTPs:

T1193 - Spearphishing Attachment
T1122 - Component Object Model Hijacking
T1557.002 - ARP Cache Poisoning
T1136.002 - Domain Account
T1592.003 - Firmware

MITREへのリンク →

Scattered Spider

Score: 0.64

Matched TTPs:

T1552.003 - Shell History
T1557.002 - ARP Cache Poisoning
T1136.002 - Domain Account
T1090.004 - Domain Fronting
T1565.002 - Transmitted Data Manipulation

MITREへのリンク →

APT28

Score: 0.62

Matched TTPs:

T1566.003 - Spearphishing via Service
T1122 - Component Object Model Hijacking
T1059.012 - Hypervisor CLI
T1592.003 - Firmware
T1055.008 - Ptrace System Calls

MITREへのリンク →

APT29

Score: 0.59

Matched TTPs:

T1592.004 - Client Configurations
T1547.008 - LSASS Driver
T1122 - Component Object Model Hijacking
T1490 - Inhibit System Recovery
T1218.009 - Regsvcs/Regasm

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る