Recent trends in Nuclear Exploit Kit activity
概要
Packet captures of the 2015-09-30 Nuclear EK traffic are available at:
http://malware-traffic-analysis.net/2015/09/30/2015-09-30-Nuclear-EK-traffic-first-run.pcap
http://malware-traffic-analysis.net/2015/09/30/2015-09-30-Nuclear-EK-traffic-second-run.pcap
http://malware-traffic-analysis.net/2015/09/30/2015-09-30-Nuclear-EK-traffic-third-run.pcap
A zip archive of the associated malware and artifacts is available at:
http://malware-traffic-analysis.net/2015/09/30/2015-09-30-Nuclear-EK-artifacts-for-ISC-diary.zip
Created: 2026-02-23
Indicators
Indicatorsは見つかっていない。
類似Pulses
このPulseに関連する脅威アクター (事実ベース)
Score: 5.31
Matched TTPs:
- T1590.004 - Network Topology
- T1190 - Exploit Public-Facing Application
MITREへのリンク →
Score: 9.71
Matched TTPs:
- T1590.004 - Network Topology
- T1190 - Exploit Public-Facing Application
- T1016 - System Network Configuration Discovery
- T1090.001 - Internal Proxy
MITREへのリンク →
Score: 13.85
Matched TTPs:
- T1590.004 - Network Topology
- T1190 - Exploit Public-Facing Application
- T1016 - System Network Configuration Discovery
- T1596.005 - Scan Databases
- T1090.001 - Internal Proxy
MITREへのリンク →
Score: 4.06
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
MITREへのリンク →
Score: 4.06
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
MITREへのリンク →
Score: 7.07
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1016 - System Network Configuration Discovery
- T1588.005 - Exploits
MITREへのリンク →
Score: 12.33
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1595.001 - Scanning IP Blocks
- T1588.005 - Exploits
MITREへのリンク →
Score: 5.53
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1016 - System Network Configuration Discovery
MITREへのリンク →
Score: 4.06
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
MITREへのリンク →
Score: 5.53
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1016 - System Network Configuration Discovery
MITREへのリンク →
Score: 8.60
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1090.004 - Domain Fronting
MITREへのリンク →
Score: 4.06
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
MITREへのリンク →
Score: 4.06
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
MITREへのリンク →
Score: 5.60
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1681 - Search Threat Vendor Data
MITREへのリンク →
Score: 5.53
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1016 - System Network Configuration Discovery
MITREへのリンク →
Score: 9.66
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1016 - System Network Configuration Discovery
- T1596.005 - Scan Databases
MITREへのリンク →
Score: 8.24
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1056 - Input Capture
- T1090.001 - Internal Proxy
MITREへのリンク →
Score: 6.01
Matched TTPs:
- T1518.002 - Backup Software Discovery
- T1016 - System Network Configuration Discovery
MITREへのリンク →
Score: 8.19
Matched TTPs:
- T1595.002 - Vulnerability Scanning
- T1016 - System Network Configuration Discovery
- T1595.001 - Scanning IP Blocks
MITREへのリンク →
Score: 7.98
Matched TTPs:
- T1681 - Search Threat Vendor Data
- T1497 - Virtualization/Sandbox Evasion
MITREへのリンク →
Score: 10.14
Matched TTPs:
- T1016 - System Network Configuration Discovery
- T1678 - Delay Execution
- T1027.007 - Dynamic API Resolution
MITREへのリンク →
Score: 4.40
Matched TTPs:
- T1016 - System Network Configuration Discovery
- T1090.001 - Internal Proxy
MITREへのリンク →
Score: 8.53
Matched TTPs:
- T1016 - System Network Configuration Discovery
- T1027.007 - Dynamic API Resolution
- T1090.001 - Internal Proxy
MITREへのリンク →
Score: 5.31
Matched TTPs:
- T1016 - System Network Configuration Discovery
- T1056 - Input Capture
MITREへのリンク →
Score: 4.40
Matched TTPs:
- T1016 - System Network Configuration Discovery
- T1090.001 - Internal Proxy
MITREへのリンク →
Score: 5.31
Matched TTPs:
- T1016 - System Network Configuration Discovery
- T1497 - Virtualization/Sandbox Evasion
MITREへのリンク →
Score: 4.40
Matched TTPs:
- T1016 - System Network Configuration Discovery
- T1090.001 - Internal Proxy
MITREへのリンク →
Score: 3.84
Matched TTPs:
- T1497 - Virtualization/Sandbox Evasion
MITREへのリンク →
このPulseに関連する脅威アクター (推論ベース)
Score: 0.81
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1590.004 - Network Topology
- T1596.005 - Scan Databases
- T1016 - System Network Configuration Discovery
- T1090.001 - Internal Proxy
MITREへのリンク →
Score: 0.70
Matched TTPs:
- T1595.001 - Scanning IP Blocks
- T1190 - Exploit Public-Facing Application
- T1588.005 - Exploits
- T1595.002 - Vulnerability Scanning
MITREへのリンク →
Score: 0.61
Matched TTPs:
- T1027.007 - Dynamic API Resolution
- T1678 - Delay Execution
- T1016 - System Network Configuration Discovery
MITREへのリンク →
Score: 0.61
Matched TTPs:
- T1596.005 - Scan Databases
- T1190 - Exploit Public-Facing Application
- T1016 - System Network Configuration Discovery
- T1595.002 - Vulnerability Scanning
MITREへのリンク →
Score: 0.59
Matched TTPs:
- T1590.004 - Network Topology
- T1190 - Exploit Public-Facing Application
- T1016 - System Network Configuration Discovery
- T1090.001 - Internal Proxy
MITREへのリンク →
Score: 0.56
Matched TTPs:
- T1056 - Input Capture
- T1190 - Exploit Public-Facing Application
- T1090.001 - Internal Proxy
MITREへのリンク →
Related CVEs
このPulseに見つかったCVEはありません。
Pulse – 脅威アクター グラフ
← Pulse一覧に戻る
Trusted Design