Trusted Design

New Spy Banker Trojan Telax abusing Google Cloud Servers

概要

Zscaler ThreatLabZ has been closely monitoring a new Spy Banker Trojan campaign that has been targeting Portuguese-speaking users in Brazil. The malware authors are leveraging Google Cloud Servers to host the initial Spy Banker Downloader Trojan, which is responsible for downloading and installing Spy Banker Trojan Telax. The attackers are using social engineering tactics, such as offering coupon vouchers and free software applications like WhatsApp and Avast antivirus, to lure the end user into downloading and installing the malicious payload. Social networking sites Facebook and Twitter are primarily being used to spread a shortened URL (using bit.ly service) that points to a Google Cloud Server hosting the malicious payload with .COM or .EXE file extensions.

Created: 2026-02-23

Indicators

類似Pulses

このPulseに関連する脅威アクター (事実ベース)

Kimsuky

Score: 28.30
Matched TTPs:
  • T1033 - System Owner/User Discovery
  • T1213.006 - Databases
  • T1566.002 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1140 - Deobfuscate/Decode Files or Information
  • T1608 - Stage Capabilities
  • T1608.005 - Link Target
  • T1102.003 - One-Way Communication
  • T1547.002 - Authentication Package
  • T1008 - Fallback Channels
MITREへのリンク →

Sea Turtle

Score: 9.62
Matched TTPs:
  • T1033 - System Owner/User Discovery
  • T1140 - Deobfuscate/Decode Files or Information
  • T1218.010 - Regsvr32
  • T1059.013 - Container CLI/API
MITREへのリンク →

Ember Bear

Score: 12.59
Matched TTPs:
  • T1033 - System Owner/User Discovery
  • T1564.008 - Email Hiding Rules
  • T1140 - Deobfuscate/Decode Files or Information
  • T1136.002 - Domain Account
  • T1218.010 - Regsvr32
MITREへのリンク →

Indrik Spider

Score: 5.87
Matched TTPs:
  • T1033 - System Owner/User Discovery
  • T1546.016 - Installer Packages
MITREへのリンク →

Agrius

Score: 4.50
Matched TTPs:
  • T1033 - System Owner/User Discovery
  • T1140 - Deobfuscate/Decode Files or Information
MITREへのリンク →

Contagious Interview

Score: 21.50
Matched TTPs:
  • T1033 - System Owner/User Discovery
  • T1091 - Replication Through Removable Media
  • T1021.006 - Windows Remote Management
  • T1608.005 - Link Target
  • T1102.003 - One-Way Communication
  • T1221 - Template Injection
  • T1547.008 - LSASS Driver
MITREへのリンク →

Sandworm Team

Score: 30.54
Matched TTPs:
  • T1033 - System Owner/User Discovery
  • T1564.008 - Email Hiding Rules
  • T1566.002 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1140 - Deobfuscate/Decode Files or Information
  • T1016.002 - Wi-Fi Discovery
  • T1102.003 - One-Way Communication
  • T1187 - Forced Authentication
  • T1547.002 - Authentication Package
  • T1218.010 - Regsvr32
  • T1546.016 - Installer Packages
MITREへのリンク →

Star Blizzard

Score: 10.75
Matched TTPs:
  • T1033 - System Owner/User Discovery
  • T1566.002 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1102.003 - One-Way Communication
MITREへのリンク →

Mustard Tempest

Score: 8.28
Matched TTPs:
  • T1682 - Query Public AI Services
  • T1091 - Replication Through Removable Media
  • T1059.012 - Hypervisor CLI
MITREへのリンク →

Sidewinder

Score: 6.54
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1218.010 - Regsvr32
  • T1578.001 - Create Snapshot
MITREへのリンク →

Scattered Spider

Score: 15.82
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1136.002 - Domain Account
  • T1619 - Cloud Storage Object Discovery
  • T1021.001 - Remote Desktop Protocol
  • T1588.005 - Exploits
MITREへのリンク →

Mustang Panda

Score: 24.39
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1612 - Build Image on Host
  • T1608 - Stage Capabilities
  • T1608.005 - Link Target
  • T1102.003 - One-Way Communication
  • T1218.010 - Regsvr32
  • T1055.005 - Thread Local Storage
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

ZIRCONIUM

Score: 9.46
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1608.005 - Link Target
  • T1547.002 - Authentication Package
  • T1578.001 - Create Snapshot
MITREへのリンク →

APT32

Score: 18.74
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1592.004 - Client Configurations
  • T1612 - Build Image on Host
  • T1608.005 - Link Target
  • T1218.010 - Regsvr32
  • T1059.012 - Hypervisor CLI
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Magic Hound

Score: 20.09
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1140 - Deobfuscate/Decode Files or Information
  • T1016.002 - Wi-Fi Discovery
  • T1608.005 - Link Target
  • T1187 - Forced Authentication
  • T1547.002 - Authentication Package
  • T1059.012 - Hypervisor CLI
  • T1547.008 - LSASS Driver
MITREへのリンク →

APT28

Score: 32.74
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1140 - Deobfuscate/Decode Files or Information
  • T1547.011 - Plist Modification
  • T1608.005 - Link Target
  • T1547.002 - Authentication Package
  • T1218.010 - Regsvr32
  • T1059.012 - Hypervisor CLI
  • T1105 - Ingress Tool Transfer
  • T1055.008 - Ptrace System Calls
  • T1021.001 - Remote Desktop Protocol
  • T1546.007 - Netsh Helper DLL
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Moonstone Sleet

Score: 6.95
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1547.008 - LSASS Driver
MITREへのリンク →

CURIUM

Score: 12.96
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1218.001 - Compiled HTML File
  • T1059.012 - Hypervisor CLI
  • T1578.001 - Create Snapshot
  • T1547.008 - LSASS Driver
MITREへのリンク →

Dragonfly

Score: 10.02
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1140 - Deobfuscate/Decode Files or Information
  • T1218.010 - Regsvr32
  • T1059.012 - Hypervisor CLI
  • T1546.016 - Installer Packages
MITREへのリンク →

Patchwork

Score: 9.00
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1218.010 - Regsvr32
  • T1059.012 - Hypervisor CLI
  • T1008 - Fallback Channels
MITREへのリンク →

APT29

Score: 26.09
Matched TTPs:
  • T1202 - Indirect Command Execution
  • T1140 - Deobfuscate/Decode Files or Information
  • T1547.011 - Plist Modification
  • T1592.004 - Client Configurations
  • T1608.005 - Link Target
  • T1218.010 - Regsvr32
  • T1218.009 - Regsvcs/Regasm
  • T1021.001 - Remote Desktop Protocol
  • T1547.008 - LSASS Driver
MITREへのリンク →

TA2541

Score: 9.60
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1136.002 - Domain Account
  • T1608.005 - Link Target
  • T1546.017 - Udev Rules
MITREへのリンク →

Earth Lusca

Score: 16.13
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1140 - Deobfuscate/Decode Files or Information
  • T1136.002 - Domain Account
  • T1608.005 - Link Target
  • T1218.001 - Compiled HTML File
  • T1059.012 - Hypervisor CLI
  • T1546.016 - Installer Packages
MITREへのリンク →

LuminousMoth

Score: 7.10
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1136.002 - Domain Account
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

OilRig

Score: 5.99
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1218.010 - Regsvr32
  • T1547.008 - LSASS Driver
MITREへのリンク →

TeamTNT

Score: 4.50
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1612 - Build Image on Host
MITREへのリンク →

LazyScripter

Score: 8.97
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1136.002 - Domain Account
  • T1612 - Build Image on Host
  • T1608.005 - Link Target
MITREへのリンク →

Gamaredon Group

Score: 23.66
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1612 - Build Image on Host
  • T1608 - Stage Capabilities
  • T1608.005 - Link Target
  • T1554 - Compromise Host Software Binary
  • T1547.002 - Authentication Package
  • T1059.013 - Container CLI/API
  • T1546.017 - Udev Rules
MITREへのリンク →

Threat Group-3390

Score: 13.99
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1140 - Deobfuscate/Decode Files or Information
  • T1218.003 - CMSTP
  • T1218.010 - Regsvr32
  • T1059.012 - Hypervisor CLI
  • T1546.017 - Udev Rules
MITREへのリンク →

TA505

Score: 8.05
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1016.002 - Wi-Fi Discovery
  • T1136.002 - Domain Account
MITREへのリンク →

BlackByte

Score: 3.44
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1140 - Deobfuscate/Decode Files or Information
MITREへのリンク →

BITTER

Score: 3.47
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1218.010 - Regsvr32
MITREへのリンク →

HEXANE

Score: 4.37
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1547.002 - Authentication Package
MITREへのリンク →

Saint Bear

Score: 5.48
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1608.005 - Link Target
  • T1218.010 - Regsvr32
MITREへのリンク →

FIN7

Score: 17.65
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1140 - Deobfuscate/Decode Files or Information
  • T1011.001 - Exfiltration Over Bluetooth
  • T1608.005 - Link Target
  • T1547.002 - Authentication Package
  • T1105 - Ingress Tool Transfer
  • T1578.001 - Create Snapshot
MITREへのリンク →

EXOTIC LILY

Score: 13.05
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1612 - Build Image on Host
  • T1149 - LC_MAIN Hijacking
  • T1218.010 - Regsvr32
  • T1547.008 - LSASS Driver
MITREへのリンク →

APT42

Score: 4.50
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1612 - Build Image on Host
MITREへのリンク →

Rocke

Score: 13.57
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1612 - Build Image on Host
  • T1059.013 - Container CLI/API
  • T1105 - Ingress Tool Transfer
  • T1008 - Fallback Channels
MITREへのリンク →

Volt Typhoon

Score: 10.18
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1102.003 - One-Way Communication
  • T1546.016 - Installer Packages
  • T1578.001 - Create Snapshot
MITREへのリンク →

BackdoorDiplomacy

Score: 3.93
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1136.002 - Domain Account
MITREへのリンク →

FIN13

Score: 4.14
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Medusa Group

Score: 16.69
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1218.003 - CMSTP
  • T1608.005 - Link Target
  • T1598 - Phishing for Information
  • T1094 - Custom Command and Control Protocol
MITREへのリンク →

Storm-0501

Score: 4.40
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

Fox Kitten

Score: 7.84
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1612 - Build Image on Host
  • T1588.005 - Exploits
MITREへのリンク →

Ke3chang

Score: 4.40
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

menuPass

Score: 4.22
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1547.011 - Plist Modification
MITREへのリンク →

ToddyCat

Score: 3.99
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1547.008 - LSASS Driver
MITREへのリンク →

GALLIUM

Score: 4.22
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1547.011 - Plist Modification
MITREへのリンク →

Winter Vivern

Score: 6.86
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1218.001 - Compiled HTML File
  • T1059.012 - Hypervisor CLI
MITREへのリンク →

Leviathan

Score: 14.85
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1554 - Compromise Host Software Binary
  • T1218.010 - Regsvr32
  • T1059.012 - Hypervisor CLI
  • T1546.016 - Installer Packages
  • T1546.017 - Udev Rules
MITREへのリンク →

UNC3886

Score: 12.15
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1021.006 - Windows Remote Management
  • T1136.002 - Domain Account
  • T1218.010 - Regsvr32
  • T1578.001 - Create Snapshot
MITREへのリンク →

Axiom

Score: 9.27
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1218.010 - Regsvr32
  • T1059.012 - Hypervisor CLI
  • T1160 - Launch Daemon
MITREへのリンク →

APT41

Score: 6.25
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1218.010 - Regsvr32
  • T1008 - Fallback Channels
MITREへのリンク →

HAFNIUM

Score: 13.21
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1608.005 - Link Target
  • T1105 - Ingress Tool Transfer
  • T1055.008 - Ptrace System Calls
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

APT5

Score: 4.40
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

MuddyWater

Score: 13.74
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1547.011 - Plist Modification
  • T1608.005 - Link Target
  • T1547.002 - Authentication Package
  • T1218.010 - Regsvr32
  • T1059.013 - Container CLI/API
MITREへのリンク →

APT39

Score: 6.61
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1547.011 - Plist Modification
  • T1547.002 - Authentication Package
MITREへのリンク →

MoustachedBouncer

Score: 4.54
Matched TTPs:
  • T1055.003 - Thread Execution Hijacking
MITREへのリンク →

RedCurl

Score: 8.81
Matched TTPs:
  • T1016.002 - Wi-Fi Discovery
  • T1612 - Build Image on Host
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Tonto Team

Score: 4.24
Matched TTPs:
  • T1547.011 - Plist Modification
  • T1218.010 - Regsvr32
MITREへのリンク →

Lazarus Group

Score: 25.16
Matched TTPs:
  • T1547.011 - Plist Modification
  • T1608.005 - Link Target
  • T1547.002 - Authentication Package
  • T1218.010 - Regsvr32
  • T1059.012 - Hypervisor CLI
  • T1546.016 - Installer Packages
  • T1055.005 - Thread Local Storage
  • T1105 - Ingress Tool Transfer
  • T1578.001 - Create Snapshot
  • T1547.008 - LSASS Driver
MITREへのリンク →

APT3

Score: 4.24
Matched TTPs:
  • T1547.011 - Plist Modification
  • T1218.010 - Regsvr32
MITREへのリンク →

LAPSUS$

Score: 13.36
Matched TTPs:
  • T1136.002 - Domain Account
  • T1619 - Cloud Storage Object Discovery
  • T1021.001 - Remote Desktop Protocol
  • T1588.005 - Exploits
MITREへのリンク →

Andariel

Score: 9.56
Matched TTPs:
  • T1136.002 - Domain Account
  • T1187 - Forced Authentication
  • T1218.010 - Regsvr32
  • T1059.012 - Hypervisor CLI
MITREへのリンク →

Turla

Score: 20.20
Matched TTPs:
  • T1136.002 - Domain Account
  • T1612 - Build Image on Host
  • T1608.005 - Link Target
  • T1218.001 - Compiled HTML File
  • T1547.002 - Authentication Package
  • T1059.012 - Hypervisor CLI
  • T1546.016 - Installer Packages
  • T1578.001 - Create Snapshot
MITREへのリンク →

BRONZE BUTLER

Score: 12.98
Matched TTPs:
  • T1592.004 - Client Configurations
  • T1218.010 - Regsvr32
  • T1059.012 - Hypervisor CLI
  • T1578.001 - Create Snapshot
  • T1008 - Fallback Channels
MITREへのリンク →

Inception

Score: 4.02
Matched TTPs:
  • T1612 - Build Image on Host
  • T1218.010 - Regsvr32
MITREへのリンク →

FIN6

Score: 5.05
Matched TTPs:
  • T1612 - Build Image on Host
  • T1547.008 - LSASS Driver
MITREへのリンク →

Confucius

Score: 3.51
Matched TTPs:
  • T1608.005 - Link Target
  • T1218.010 - Regsvr32
MITREへのリンク →

POLONIUM

Score: 4.41
Matched TTPs:
  • T1608.005 - Link Target
  • T1547.002 - Authentication Package
MITREへのリンク →

APT37

Score: 5.66
Matched TTPs:
  • T1547.002 - Authentication Package
  • T1218.010 - Regsvr32
  • T1059.012 - Hypervisor CLI
MITREへのリンク →

APT12

Score: 3.89
Matched TTPs:
  • T1547.002 - Authentication Package
  • T1218.010 - Regsvr32
MITREへのリンク →

The White Company

Score: 4.09
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1578.001 - Create Snapshot
MITREへのリンク →

Higaisa

Score: 7.24
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1578.001 - Create Snapshot
  • T1546.017 - Udev Rules
MITREへのリンク →

Transparent Tribe

Score: 5.92
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1059.012 - Hypervisor CLI
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Tropic Trooper

Score: 4.16
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1105 - Ingress Tool Transfer
MITREへのリンク →

Elderwood

Score: 3.26
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1059.012 - Hypervisor CLI
MITREへのリンク →

Darkhotel

Score: 5.85
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1059.012 - Hypervisor CLI
  • T1578.001 - Create Snapshot
MITREへのリンク →

APT33

Score: 4.42
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

RTM

Score: 5.05
Matched TTPs:
  • T1059.012 - Hypervisor CLI
  • T1008 - Fallback Channels
MITREへのリンク →

PLATINUM

Score: 6.30
Matched TTPs:
  • T1059.012 - Hypervisor CLI
  • T1686 - Disable or Modify System Firewall
MITREへのリンク →

Windshift

Score: 4.29
Matched TTPs:
  • T1059.012 - Hypervisor CLI
  • T1547.008 - LSASS Driver
MITREへのリンク →

Dark Caracal

Score: 4.29
Matched TTPs:
  • T1059.012 - Hypervisor CLI
  • T1547.008 - LSASS Driver
MITREへのリンク →

Daggerfly

Score: 4.60
Matched TTPs:
  • T1059.012 - Hypervisor CLI
  • T1546.016 - Installer Packages
MITREへのリンク →

Molerats

Score: 3.15
Matched TTPs:
  • T1546.017 - Udev Rules
MITREへのリンク →

Mofang

Score: 3.15
Matched TTPs:
  • T1546.017 - Udev Rules
MITREへのリンク →

Velvet Ant

Score: 4.13
Matched TTPs:
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

APT28

Score: 0.83
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1055.008 - Ptrace System Calls
  • T1105 - Ingress Tool Transfer
  • T1566.002 - Spearphishing Link
  • T1218.010 - Regsvr32
  • T1566.003 - Spearphishing via Service
  • T1059.012 - Hypervisor CLI
  • T1021.001 - Remote Desktop Protocol
  • T1547.011 - Plist Modification
  • T1546.007 - Netsh Helper DLL
  • T1547.002 - Authentication Package
  • T1608.005 - Link Target
MITREへのリンク →

Sandworm Team

Score: 0.77
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1564.008 - Email Hiding Rules
  • T1140 - Deobfuscate/Decode Files or Information
  • T1187 - Forced Authentication
  • T1566.002 - Spearphishing Link
  • T1102.003 - One-Way Communication
  • T1218.010 - Regsvr32
  • T1546.016 - Installer Packages
  • T1033 - System Owner/User Discovery
  • T1016.002 - Wi-Fi Discovery
  • T1547.002 - Authentication Package
MITREへのリンク →

Kimsuky

Score: 0.71
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1140 - Deobfuscate/Decode Files or Information
  • T1566.002 - Spearphishing Link
  • T1102.003 - One-Way Communication
  • T1213.006 - Databases
  • T1608 - Stage Capabilities
  • T1033 - System Owner/User Discovery
  • T1008 - Fallback Channels
  • T1547.002 - Authentication Package
  • T1608.005 - Link Target
MITREへのリンク →

APT29

Score: 0.68
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1218.009 - Regsvcs/Regasm
  • T1202 - Indirect Command Execution
  • T1218.010 - Regsvr32
  • T1547.008 - LSASS Driver
  • T1021.001 - Remote Desktop Protocol
  • T1547.011 - Plist Modification
  • T1592.004 - Client Configurations
  • T1608.005 - Link Target
MITREへのリンク →

Lazarus Group

Score: 0.65
Matched TTPs:
  • T1105 - Ingress Tool Transfer
  • T1218.010 - Regsvr32
  • T1578.001 - Create Snapshot
  • T1547.008 - LSASS Driver
  • T1059.012 - Hypervisor CLI
  • T1546.016 - Installer Packages
  • T1055.005 - Thread Local Storage
  • T1547.011 - Plist Modification
  • T1547.002 - Authentication Package
  • T1608.005 - Link Target
MITREへのリンク →

Mustang Panda

Score: 0.64
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1105 - Ingress Tool Transfer
  • T1566.002 - Spearphishing Link
  • T1102.003 - One-Way Communication
  • T1218.010 - Regsvr32
  • T1612 - Build Image on Host
  • T1608 - Stage Capabilities
  • T1055.005 - Thread Local Storage
  • T1608.005 - Link Target
MITREへのリンク →

Gamaredon Group

Score: 0.63
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1554 - Compromise Host Software Binary
  • T1546.017 - Udev Rules
  • T1612 - Build Image on Host
  • T1608 - Stage Capabilities
  • T1059.013 - Container CLI/API
  • T1547.002 - Authentication Package
  • T1608.005 - Link Target
MITREへのリンク →

Turla

Score: 0.58
Matched TTPs:
  • T1218.001 - Compiled HTML File
  • T1578.001 - Create Snapshot
  • T1059.012 - Hypervisor CLI
  • T1612 - Build Image on Host
  • T1546.016 - Installer Packages
  • T1136.002 - Domain Account
  • T1547.002 - Authentication Package
  • T1608.005 - Link Target
MITREへのリンク →

Contagious Interview

Score: 0.55
Matched TTPs:
  • T1221 - Template Injection
  • T1091 - Replication Through Removable Media
  • T1102.003 - One-Way Communication
  • T1547.008 - LSASS Driver
  • T1033 - System Owner/User Discovery
  • T1021.006 - Windows Remote Management
  • T1608.005 - Link Target
MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

← Pulse一覧に戻る