Trusted Design

The Cuckoo Miner Campaign

概要

As early as 2013, Trend Micro has anticipated that threat actors that are involved in cybercrime would level up via targeted attack methodologies. Armed with insights on what had previously worked and what had not for a particular environment, they are quick to recycle old phishing email content and weaponize even an old exploit by bundling it with a newer tool to achieve their goal. The exploits may not be new, but they know that there is a high probability that it will work.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

MarsJoke Ransomware Mimics CTB-Locker (score: 0.58)
Hawkeye Keylogger – Reborn v8: An in-depth campaign analysis (score: 0.58)
Targeted Threat Leads to Keylogger via Fake Silverlight Update (score: 0.58)
Targeted Crimeware in the Midst of Indiscriminate Activity (score: 0.56)
TrendLabs: Spam Campaign Delivers Cross-platform Remote Access Trojan Adwind (score: 0.56)

このPulseに関連する脅威アクター (事実ベース)

Contagious Interview

Score: 13.72

Matched TTPs:

T1044 - File System Permissions Weakness
T1021.006 - Windows Remote Management
T1552.003 - Shell History
T1547.008 - LSASS Driver

MITREへのリンク →

APT28

Score: 6.11

Matched TTPs:

T1024 - Custom Cryptographic Protocol
T1197 - BITS Jobs

MITREへのリンク →

Magic Hound

Score: 5.19

Matched TTPs:

T1024 - Custom Cryptographic Protocol
T1547.008 - LSASS Driver

MITREへのリンク →

OilRig

Score: 5.19

Matched TTPs:

T1024 - Custom Cryptographic Protocol
T1547.008 - LSASS Driver

MITREへのリンク →

Kimsuky

Score: 16.05

Matched TTPs:

T1024 - Custom Cryptographic Protocol
T1552.003 - Shell History
T1562.013 - Disable or Modify Network Device Firewall
T1197 - BITS Jobs
T1003.003 - NTDS

MITREへのリンク →

APT29

Score: 5.19

Matched TTPs:

T1024 - Custom Cryptographic Protocol
T1547.008 - LSASS Driver

MITREへのリンク →

Medusa Group

Score: 6.66

Matched TTPs:

T1218.003 - CMSTP
T1552.003 - Shell History

MITREへのリンク →

Threat Group-3390

Score: 4.13

Matched TTPs:

T1218.003 - CMSTP

MITREへのリンク →

UNC3886

Score: 4.13

Matched TTPs:

T1021.006 - Windows Remote Management

MITREへのリンク →

INC Ransom

Score: 5.81

Matched TTPs:

T1552.003 - Shell History
T1562.013 - Disable or Modify Network Device Firewall

MITREへのリンク →

AppleJeus

Score: 5.81

Matched TTPs:

T1552.003 - Shell History
T1562.013 - Disable or Modify Network Device Firewall

MITREへのリンク →

Scattered Spider

Score: 5.96

Matched TTPs:

T1552.003 - Shell History
T1197 - BITS Jobs

MITREへのリンク →

Sea Turtle

Score: 3.29

Matched TTPs:

T1562.013 - Disable or Modify Network Device Firewall

MITREへのリンク →

Axiom

Score: 3.29

Matched TTPs:

T1562.013 - Disable or Modify Network Device Firewall

MITREへのリンク →

GOLD SOUTHFIELD

Score: 3.29

Matched TTPs:

T1562.013 - Disable or Modify Network Device Firewall

MITREへのリンク →

Storm-1811

Score: 7.06

Matched TTPs:

T1567.003 - Exfiltration to Text Storage Sites
T1547.008 - LSASS Driver

MITREへのリンク →

ZIRCONIUM

Score: 3.44

Matched TTPs:

T1197 - BITS Jobs

MITREへのリンク →

Moonstone Sleet

Score: 5.96

Matched TTPs:

T1197 - BITS Jobs
T1547.008 - LSASS Driver

MITREへのリンク →

APT38

Score: 4.54

Matched TTPs:

T1059.005 - Visual Basic

MITREへのリンク →

Ember Bear

Score: 4.13

Matched TTPs:

T1003.003 - NTDS

MITREへのリンク →

Blue Mockingbird

Score: 4.54

Matched TTPs:

T1001.001 - Junk Data

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Kimsuky

Score: 0.80

Matched TTPs:

T1562.013 - Disable or Modify Network Device Firewall
T1552.003 - Shell History
T1024 - Custom Cryptographic Protocol
T1003.003 - NTDS
T1197 - BITS Jobs

MITREへのリンク →

Contagious Interview

Score: 0.71

Matched TTPs:

T1044 - File System Permissions Weakness
T1552.003 - Shell History
T1547.008 - LSASS Driver
T1021.006 - Windows Remote Management

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る