Trusted Design

Fareit botnet family

概要

This family of malware has a significant history associated with malware distribution. It is mainly an information stealer and malware downloader network which installs other malware on infected machines. In this campaign, it mainly tries to steal Firefox and other credentials. It is possible that this botnet is sold as a pay-per-infection botnet in the underground markets. Pay-per-infection is an underground business model where criminals are paying other criminals to distribute their malware

Created: 2026-02-23

Indicators

類似Pulses

このPulseに関連する脅威アクター (事実ベース)

Kimsuky

Score: 21.63
Matched TTPs:
  • T1033 - System Owner/User Discovery
  • T1606.002 - SAML Tokens
  • T1091 - Replication Through Removable Media
  • T1552.003 - Shell History
  • T1537 - Transfer Data to Cloud Account
  • T1526 - Cloud Service Discovery
  • T1003.003 - NTDS
  • T1490 - Inhibit System Recovery
MITREへのリンク →

Sea Turtle

Score: 5.70
Matched TTPs:
  • T1033 - System Owner/User Discovery
  • T1490 - Inhibit System Recovery
MITREへのリンク →

Ember Bear

Score: 13.47
Matched TTPs:
  • T1033 - System Owner/User Discovery
  • T1005 - Data from Local System
  • T1136.002 - Domain Account
  • T1003.003 - NTDS
MITREへのリンク →

Indrik Spider

Score: 5.13
Matched TTPs:
  • T1033 - System Owner/User Discovery
  • T1606.002 - SAML Tokens
MITREへのリンク →

Agrius

Score: 3.03
Matched TTPs:
  • T1033 - System Owner/User Discovery
MITREへのリンク →

Contagious Interview

Score: 9.63
Matched TTPs:
  • T1033 - System Owner/User Discovery
  • T1606.002 - SAML Tokens
  • T1091 - Replication Through Removable Media
  • T1552.003 - Shell History
MITREへのリンク →

Sandworm Team

Score: 14.57
Matched TTPs:
  • T1033 - System Owner/User Discovery
  • T1606.002 - SAML Tokens
  • T1091 - Replication Through Removable Media
  • T1005 - Data from Local System
  • T1049 - System Network Connections Discovery
MITREへのリンク →

Star Blizzard

Score: 5.01
Matched TTPs:
  • T1033 - System Owner/User Discovery
  • T1091 - Replication Through Removable Media
MITREへのリンク →

Mustard Tempest

Score: 6.51
Matched TTPs:
  • T1682 - Query Public AI Services
  • T1091 - Replication Through Removable Media
MITREへのリンク →

FIN13

Score: 4.62
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1552.003 - Shell History
MITREへのリンク →

Moonstone Sleet

Score: 4.07
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1091 - Replication Through Removable Media
MITREへのリンク →

Lazarus Group

Score: 6.23
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1055.005 - Thread Local Storage
MITREへのリンク →

OilRig

Score: 14.69
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1091 - Replication Through Removable Media
  • T1005 - Data from Local System
  • T1556.009 - Conditional Access Policies
  • T1526 - Cloud Service Discovery
MITREへのリンク →

UNC3886

Score: 4.55
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1136.002 - Domain Account
MITREへのリンク →

LuminousMoth

Score: 6.53
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1091 - Replication Through Removable Media
  • T1136.002 - Domain Account
MITREへのリンク →

APT29

Score: 11.35
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1555.004 - Windows Credential Manager
  • T1537 - Transfer Data to Cloud Account
  • T1490 - Inhibit System Recovery
MITREへのリンク →

Play

Score: 7.28
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1552.003 - Shell History
  • T1490 - Inhibit System Recovery
MITREへのリンク →

Aoqin Dragon

Score: 4.15
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1537 - Transfer Data to Cloud Account
MITREへのリンク →

Turla

Score: 10.84
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1136.002 - Domain Account
  • T1556.009 - Conditional Access Policies
  • T1490 - Inhibit System Recovery
MITREへのリンク →

Ke3chang

Score: 5.94
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1027.008 - Stripped Payloads
MITREへのリンク →

Mustang Panda

Score: 11.35
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1091 - Replication Through Removable Media
  • T1526 - Cloud Service Discovery
  • T1055.005 - Thread Local Storage
MITREへのリンク →

TeamTNT

Score: 6.12
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1091 - Replication Through Removable Media
  • T1537 - Transfer Data to Cloud Account
MITREへのリンク →

FIN7

Score: 6.73
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1091 - Replication Through Removable Media
  • T1490 - Inhibit System Recovery
MITREへのリンク →

HAFNIUM

Score: 10.13
Matched TTPs:
  • T1027.008 - Stripped Payloads
  • T1049 - System Network Connections Discovery
  • T1490 - Inhibit System Recovery
MITREへのリンク →

APT5

Score: 3.84
Matched TTPs:
  • T1027.008 - Stripped Payloads
MITREへのリンク →

TA2541

Score: 6.48
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1136.002 - Domain Account
  • T1537 - Transfer Data to Cloud Account
MITREへのリンク →

Earth Lusca

Score: 4.43
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1136.002 - Domain Account
MITREへのリンク →

LazyScripter

Score: 4.43
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1136.002 - Domain Account
MITREへのリンク →

Threat Group-3390

Score: 7.18
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1537 - Transfer Data to Cloud Account
  • T1526 - Cloud Service Discovery
MITREへのリンク →

TA505

Score: 6.48
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1136.002 - Domain Account
  • T1537 - Transfer Data to Cloud Account
MITREへのリンク →

APT32

Score: 4.64
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1490 - Inhibit System Recovery
MITREへのリンク →

Saint Bear

Score: 4.03
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1537 - Transfer Data to Cloud Account
MITREへのリンク →

Scattered Spider

Score: 4.98
Matched TTPs:
  • T1136.002 - Domain Account
  • T1552.003 - Shell History
MITREへのリンク →

Axiom

Score: 3.62
Matched TTPs:
  • T1049 - System Network Connections Discovery
MITREへのリンク →

Volt Typhoon

Score: 5.67
Matched TTPs:
  • T1049 - System Network Connections Discovery
  • T1537 - Transfer Data to Cloud Account
MITREへのリンク →

Storm-0501

Score: 4.58
Matched TTPs:
  • T1552.003 - Shell History
  • T1537 - Transfer Data to Cloud Account
MITREへのリンク →

Medusa Group

Score: 9.11
Matched TTPs:
  • T1552.003 - Shell History
  • T1598 - Phishing for Information
  • T1537 - Transfer Data to Cloud Account
MITREへのリンク →

Stealth Falcon

Score: 3.62
Matched TTPs:
  • T1556.009 - Conditional Access Policies
MITREへのリンク →

Wizard Spider

Score: 6.77
Matched TTPs:
  • T1556.009 - Conditional Access Policies
  • T1526 - Cloud Service Discovery
MITREへのリンク →

BlackTech

Score: 3.15
Matched TTPs:
  • T1526 - Cloud Service Discovery
MITREへのリンク →

FIN8

Score: 3.15
Matched TTPs:
  • T1526 - Cloud Service Discovery
MITREへのリンク →

APT28

Score: 4.54
Matched TTPs:
  • T1546.007 - Netsh Helper DLL
MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Kimsuky

Score: 0.77
Matched TTPs:
  • T1526 - Cloud Service Discovery
  • T1606.002 - SAML Tokens
  • T1490 - Inhibit System Recovery
  • T1091 - Replication Through Removable Media
  • T1033 - System Owner/User Discovery
  • T1003.003 - NTDS
  • T1537 - Transfer Data to Cloud Account
  • T1552.003 - Shell History
MITREへのリンク →

Sandworm Team

Score: 0.57
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1005 - Data from Local System
  • T1091 - Replication Through Removable Media
  • T1033 - System Owner/User Discovery
  • T1049 - System Network Connections Discovery
MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

← Pulse一覧に戻る