Pulse Detail-

BBSRAT Attacks Targeting Russian Orgs Linked to Roaming Tiger

概要

In late 2014, ESET presented an attack campaign that had been observed over a period of time targeting Russia and other Russian speaking nations, dubbed “Roaming Tiger”. The attack was found to heavily rely on RTF exploits and at the time, thought to make use of the PlugX malware family. The adversaries behind these attacks continued to target Russia and other Russian speaking nations using similar exploits and attack vectors. However, while the malware used in these new attacks uses similar infection mechanisms to PlugX, it is a completely new tool with its own specific behavior patterns and architecture. We have named this tool “BBSRAT.”

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

BBSRAT Attacks Targeting Russian Organizations (score: 0.97)
Targeted Attack Distributes PlugX in Russia (score: 0.68)
A Look Into Fysbis: Sofacy’s Linux Backdoor (score: 0.63)
Defending the White Elephant (score: 0.62)
RuMMS: The Latest Family of Android Malware (score: 0.61)

このPulseに関連する脅威アクター (事実ベース)

Ember Bear

Score: 17.26

Matched TTPs:

T1491.002 - External Defacement
T1195 - Supply Chain Compromise
T1190 - Exploit Public-Facing Application
T1036 - Masquerading
T1203 - Exploitation for Client Execution
T1588.005 - Exploits

MITREへのリンク →

Sandworm Team

Score: 24.67

Matched TTPs:

T1491.002 - External Defacement
T1587.001 - Malware
T1608.001 - Upload Malware
T1195 - Supply Chain Compromise
T1190 - Exploit Public-Facing Application
T1036 - Masquerading
T1090 - Proxy
T1588.002 - Tool
T1195.002 - Compromise Software Supply Chain
T1203 - Exploitation for Client Execution
T1204.001 - Malicious Link

MITREへのリンク →

APT41

Score: 15.31

Matched TTPs:

T1568.002 - Domain Generation Algorithms
T1190 - Exploit Public-Facing Application
T1090 - Proxy
T1036.004 - Masquerade Task or Service
T1588.002 - Tool
T1195.002 - Compromise Software Supply Chain
T1203 - Exploitation for Client Execution

MITREへのリンク →

TA551

Score: 6.32

Matched TTPs:

T1568.002 - Domain Generation Algorithms
T1036 - Masquerading

MITREへのリンク →

Kimsuky

Score: 15.99

Matched TTPs:

T1587.001 - Malware
T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service
T1583.006 - Web Services
T1588.002 - Tool
T1204.001 - Malicious Link
T1588.005 - Exploits

MITREへのリンク →

FIN13

Score: 11.63

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1036 - Masquerading
T1036.004 - Masquerade Task or Service
T1588.002 - Tool
T1090.001 - Internal Proxy

MITREへのリンク →

Moonstone Sleet

Score: 9.52

Matched TTPs:

T1587.001 - Malware
T1608.001 - Upload Malware
T1195.002 - Compromise Software Supply Chain
T1566.003 - Spearphishing via Service

MITREへのリンク →

Lazarus Group

Score: 26.75

Matched TTPs:

T1587.001 - Malware
T1090.002 - External Proxy
T1036.004 - Masquerade Task or Service
T1583.006 - Web Services
T1588.002 - Tool
T1036.003 - Rename Legitimate Utilities
T1203 - Exploitation for Client Execution
T1027.007 - Dynamic API Resolution
T1124 - System Time Discovery
T1566.003 - Spearphishing via Service
T1090.001 - Internal Proxy

MITREへのリンク →

Contagious Interview

Score: 15.34

Matched TTPs:

T1587.001 - Malware
T1608.001 - Upload Malware
T1036 - Masquerading
T1090 - Proxy
T1583.006 - Web Services
T1588.002 - Tool
T1204.001 - Malicious Link
T1566.003 - Spearphishing via Service

MITREへのリンク →

OilRig

Score: 16.33

Matched TTPs:

T1587.001 - Malware
T1608.001 - Upload Malware
T1195 - Supply Chain Compromise
T1036 - Masquerading
T1588.002 - Tool
T1203 - Exploitation for Client Execution
T1204.001 - Malicious Link
T1566.003 - Spearphishing via Service

MITREへのリンク →

UNC3886

Score: 9.75

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service
T1203 - Exploitation for Client Execution
T1124 - System Time Discovery

MITREへのリンク →

LuminousMoth

Score: 6.28

Matched TTPs:

T1587.001 - Malware
T1608.001 - Upload Malware
T1588.002 - Tool
T1204.001 - Malicious Link

MITREへのリンク →

Salt Typhoon

Score: 4.41

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1588.002 - Tool

MITREへのリンク →

APT29

Score: 18.39

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1090.002 - External Proxy
T1550.003 - Pass the Ticket
T1583.006 - Web Services
T1588.002 - Tool
T1203 - Exploitation for Client Execution
T1204.001 - Malicious Link
T1566.003 - Spearphishing via Service

MITREへのリンク →

Play

Score: 4.41

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1588.002 - Tool

MITREへのリンク →

Aoqin Dragon

Score: 6.62

Matched TTPs:

T1587.001 - Malware
T1036 - Masquerading
T1588.002 - Tool
T1203 - Exploitation for Client Execution

MITREへのリンク →

RedCurl

Score: 3.46

Matched TTPs:

T1587.001 - Malware
T1204.001 - Malicious Link

MITREへのリンク →

Moses Staff

Score: 4.41

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1588.002 - Tool

MITREへのリンク →

Turla

Score: 14.18

Matched TTPs:

T1587.001 - Malware
T1090 - Proxy
T1583.006 - Web Services
T1588.002 - Tool
T1204.001 - Malicious Link
T1124 - System Time Discovery
T1090.001 - Internal Proxy

MITREへのリンク →

Ke3chang

Score: 4.41

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1588.002 - Tool

MITREへのリンク →

Mustang Panda

Score: 21.20

Matched TTPs:

T1587.001 - Malware
T1608.001 - Upload Malware
T1176.002 - IDE Extensions
T1583.006 - Web Services
T1588.002 - Tool
T1203 - Exploitation for Client Execution
T1518 - Software Discovery
T1027.007 - Dynamic API Resolution
T1204.001 - Malicious Link

MITREへのリンク →

TeamTNT

Score: 6.26

Matched TTPs:

T1587.001 - Malware
T1608.001 - Upload Malware
T1036 - Masquerading

MITREへのリンク →

FIN7

Score: 17.38

Matched TTPs:

T1587.001 - Malware
T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service
T1583.006 - Web Services
T1588.002 - Tool
T1195.002 - Compromise Software Supply Chain
T1204.001 - Malicious Link
T1124 - System Time Discovery

MITREへのリンク →

TA2541

Score: 6.19

Matched TTPs:

T1608.001 - Upload Malware
T1583.006 - Web Services
T1588.002 - Tool
T1204.001 - Malicious Link

MITREへのリンク →

Earth Lusca

Score: 10.00

Matched TTPs:

T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1090 - Proxy
T1583.006 - Web Services
T1588.002 - Tool
T1204.001 - Malicious Link

MITREへのリンク →

Mustard Tempest

Score: 3.33

Matched TTPs:

T1608.001 - Upload Malware
T1204.001 - Malicious Link

MITREへのリンク →

LazyScripter

Score: 7.53

Matched TTPs:

T1608.001 - Upload Malware
T1036 - Masquerading
T1583.006 - Web Services
T1204.001 - Malicious Link

MITREへのリンク →

Gamaredon Group

Score: 13.07

Matched TTPs:

T1608.001 - Upload Malware
T1090 - Proxy
T1583.006 - Web Services
T1588.002 - Tool
T1001 - Data Obfuscation
T1204.001 - Malicious Link

MITREへのリンク →

Threat Group-3390

Score: 12.85

Matched TTPs:

T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1608.002 - Upload Tool
T1588.002 - Tool
T1195.002 - Compromise Software Supply Chain
T1203 - Exploitation for Client Execution

MITREへのリンク →

SideCopy

Score: 4.72

Matched TTPs:

T1608.001 - Upload Malware
T1518 - Software Discovery

MITREへのリンク →

TA505

Score: 4.18

Matched TTPs:

T1608.001 - Upload Malware
T1588.002 - Tool
T1204.001 - Malicious Link

MITREへのリンク →

BlackByte

Score: 3.44

Matched TTPs:

T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application

MITREへのリンク →

BITTER

Score: 6.41

Matched TTPs:

T1608.001 - Upload Malware
T1036.004 - Masquerade Task or Service
T1588.002 - Tool
T1203 - Exploitation for Client Execution

MITREへのリンク →

APT32

Score: 19.10

Matched TTPs:

T1608.001 - Upload Malware
T1036 - Masquerading
T1550.003 - Pass the Ticket
T1036.004 - Masquerade Task or Service
T1583.006 - Web Services
T1588.002 - Tool
T1036.003 - Rename Legitimate Utilities
T1203 - Exploitation for Client Execution
T1204.001 - Malicious Link

MITREへのリンク →

HEXANE

Score: 5.57

Matched TTPs:

T1608.001 - Upload Malware
T1588.002 - Tool
T1518 - Software Discovery

MITREへのリンク →

Saint Bear

Score: 6.84

Matched TTPs:

T1608.001 - Upload Malware
T1583.006 - Web Services
T1203 - Exploitation for Client Execution
T1204.001 - Malicious Link

MITREへのリンク →

EXOTIC LILY

Score: 7.35

Matched TTPs:

T1608.001 - Upload Malware
T1203 - Exploitation for Client Execution
T1204.001 - Malicious Link
T1566.003 - Spearphishing via Service

MITREへのリンク →

Volt Typhoon

Score: 12.93

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1090 - Proxy
T1588.002 - Tool
T1518 - Software Discovery
T1124 - System Time Discovery
T1090.001 - Internal Proxy

MITREへのリンク →

APT28

Score: 20.79

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036 - Masquerading
T1090.002 - External Proxy
T1583.006 - Web Services
T1588.002 - Tool
T1203 - Exploitation for Client Execution
T1498 - Network Denial of Service
T1204.001 - Malicious Link
T1211 - Exploitation for Defense Evasion

MITREへのリンク →

BackdoorDiplomacy

Score: 4.41

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service
T1588.002 - Tool

MITREへのリンク →

GOLD SOUTHFIELD

Score: 4.40

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1195.002 - Compromise Software Supply Chain

MITREへのリンク →

BlackTech

Score: 5.17

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1588.002 - Tool
T1203 - Exploitation for Client Execution
T1204.001 - Malicious Link

MITREへのリンク →

Magic Hound

Score: 12.65

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1090 - Proxy
T1036.004 - Masquerade Task or Service
T1583.006 - Web Services
T1588.002 - Tool
T1204.001 - Malicious Link
T1566.003 - Spearphishing via Service

MITREへのリンク →

Medusa Group

Score: 8.46

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1608.002 - Upload Tool
T1583.006 - Web Services
T1588.002 - Tool

MITREへのリンク →

Sea Turtle

Score: 3.81

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1588.002 - Tool
T1203 - Exploitation for Client Execution

MITREへのリンク →

Storm-0501

Score: 3.57

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.004 - Masquerade Task or Service

MITREへのリンク →

Fox Kitten

Score: 5.91

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1090 - Proxy
T1036.004 - Masquerade Task or Service

MITREへのリンク →

Cinnamon Tempest

Score: 4.66

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1090 - Proxy
T1588.002 - Tool

MITREへのリンク →

Agrius

Score: 3.66

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036 - Masquerading

MITREへのリンク →

menuPass

Score: 10.54

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036 - Masquerading
T1090.002 - External Proxy
T1588.002 - Tool
T1036.003 - Rename Legitimate Utilities

MITREへのリンク →

ToddyCat

Score: 3.99

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1566.003 - Spearphishing via Service

MITREへのリンク →

Blue Mockingbird

Score: 4.66

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1090 - Proxy
T1588.002 - Tool

MITREへのリンク →

GALLIUM

Score: 8.35

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1090.002 - External Proxy
T1588.002 - Tool
T1036.003 - Rename Legitimate Utilities

MITREへのリンク →

Winter Vivern

Score: 7.11

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036 - Masquerading
T1036.004 - Masquerade Task or Service
T1204.001 - Malicious Link

MITREへのリンク →

Leviathan

Score: 4.32

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1203 - Exploitation for Client Execution
T1204.001 - Malicious Link

MITREへのリンク →

Dragonfly

Score: 6.74

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1588.002 - Tool
T1195.002 - Compromise Software Supply Chain
T1203 - Exploitation for Client Execution

MITREへのリンク →

Axiom

Score: 7.50

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1203 - Exploitation for Client Execution
T1001.002 - Steganography

MITREへのリンク →

HAFNIUM

Score: 3.48

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1583.006 - Web Services

MITREへのリンク →

MuddyWater

Score: 12.68

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1090.002 - External Proxy
T1583.006 - Web Services
T1588.002 - Tool
T1203 - Exploitation for Client Execution
T1518 - Software Discovery
T1204.001 - Malicious Link

MITREへのリンク →

APT39

Score: 9.35

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1090.002 - External Proxy
T1588.002 - Tool
T1204.001 - Malicious Link
T1090.001 - Internal Proxy

MITREへのリンク →

BRONZE BUTLER

Score: 13.71

Matched TTPs:

T1036 - Masquerading
T1550.003 - Pass the Ticket
T1588.002 - Tool
T1203 - Exploitation for Client Execution
T1518 - Software Discovery
T1124 - System Time Discovery

MITREへのリンク →

ZIRCONIUM

Score: 10.25

Matched TTPs:

T1036 - Masquerading
T1036.004 - Masquerade Task or Service
T1583.006 - Web Services
T1204.001 - Malicious Link
T1124 - System Time Discovery

MITREへのリンク →

Windshift

Score: 8.82

Matched TTPs:

T1036 - Masquerading
T1518 - Software Discovery
T1204.001 - Malicious Link
T1566.003 - Spearphishing via Service

MITREへのリンク →

Storm-1811

Score: 5.56

Matched TTPs:

T1036 - Masquerading
T1588.002 - Tool
T1566.003 - Spearphishing via Service

MITREへのリンク →

MoustachedBouncer

Score: 6.88

Matched TTPs:

T1659 - Content Injection
T1090 - Proxy

MITREへのリンク →

FIN5

Score: 3.60

Matched TTPs:

T1090.002 - External Proxy
T1588.002 - Tool

MITREへのリンク →

Tonto Team

Score: 4.24

Matched TTPs:

T1090.002 - External Proxy
T1203 - Exploitation for Client Execution

MITREへのリンク →

APT3

Score: 5.60

Matched TTPs:

T1090.002 - External Proxy
T1203 - Exploitation for Client Execution
T1204.001 - Malicious Link

MITREへのリンク →

Silence

Score: 3.60

Matched TTPs:

T1090.002 - External Proxy
T1588.002 - Tool

MITREへのリンク →

CopyKittens

Score: 3.19

Matched TTPs:

T1090 - Proxy
T1588.002 - Tool

MITREへのリンク →

LAPSUS$

Score: 3.19

Matched TTPs:

T1090 - Proxy
T1588.002 - Tool

MITREへのリンク →

Windigo

Score: 5.09

Matched TTPs:

T1090 - Proxy
T1518 - Software Discovery

MITREへのリンク →

POLONIUM

Score: 5.20

Matched TTPs:

T1090 - Proxy
T1583.006 - Web Services
T1588.002 - Tool

MITREへのリンク →

Scattered Spider

Score: 3.19

Matched TTPs:

T1090 - Proxy
T1588.002 - Tool

MITREへのリンク →

Wizard Spider

Score: 4.30

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1588.002 - Tool
T1204.001 - Malicious Link

MITREへのリンク →

FIN6

Score: 5.47

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1588.002 - Tool
T1566.003 - Spearphishing via Service

MITREへのリンク →

Higaisa

Score: 9.11

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1203 - Exploitation for Client Execution
T1124 - System Time Discovery
T1090.001 - Internal Proxy

MITREへのリンク →

Confucius

Score: 4.87

Matched TTPs:

T1583.006 - Web Services
T1203 - Exploitation for Client Execution
T1204.001 - Malicious Link

MITREへのリンク →

TA578

Score: 3.37

Matched TTPs:

T1583.006 - Web Services
T1204.001 - Malicious Link

MITREへのリンク →

DarkVishnya

Score: 5.39

Matched TTPs:

T1588.002 - Tool
T1200 - Hardware Additions

MITREへのリンク →

Inception

Score: 5.09

Matched TTPs:

T1588.002 - Tool
T1203 - Exploitation for Client Execution
T1518 - Software Discovery

MITREへのリンク →

Patchwork

Score: 3.70

Matched TTPs:

T1588.002 - Tool
T1203 - Exploitation for Client Execution
T1204.001 - Malicious Link

MITREへのリンク →

Cobalt Group

Score: 6.63

Matched TTPs:

T1588.002 - Tool
T1195.002 - Compromise Software Supply Chain
T1203 - Exploitation for Client Execution
T1204.001 - Malicious Link

MITREへのリンク →

Lotus Blossom

Score: 3.78

Matched TTPs:

T1588.002 - Tool
T1090.001 - Internal Proxy

MITREへのリンク →

APT38

Score: 5.49

Matched TTPs:

T1588.002 - Tool
T1036.003 - Rename Legitimate Utilities
T1204.001 - Malicious Link

MITREへのリンク →

APT33

Score: 3.70

Matched TTPs:

T1588.002 - Tool
T1203 - Exploitation for Client Execution
T1204.001 - Malicious Link

MITREへのリンク →

Chimera

Score: 3.44

Matched TTPs:

T1588.002 - Tool
T1124 - System Time Discovery

MITREへのリンク →

Daggerfly

Score: 7.57

Matched TTPs:

T1195.002 - Compromise Software Supply Chain
T1036.003 - Rename Legitimate Utilities
T1204.001 - Malicious Link

MITREへのリンク →

Sidewinder

Score: 8.19

Matched TTPs:

T1203 - Exploitation for Client Execution
T1518 - Software Discovery
T1204.001 - Malicious Link
T1124 - System Time Discovery

MITREへのリンク →

The White Company

Score: 4.09

Matched TTPs:

T1203 - Exploitation for Client Execution
T1124 - System Time Discovery

MITREへのリンク →

Tropic Trooper

Score: 4.24

Matched TTPs:

T1203 - Exploitation for Client Execution
T1518 - Software Discovery

MITREへのリンク →

Darkhotel

Score: 4.09

Matched TTPs:

T1203 - Exploitation for Client Execution
T1124 - System Time Discovery

MITREへのリンク →

CURIUM

Score: 5.12

Matched TTPs:

T1124 - System Time Discovery
T1566.003 - Spearphishing via Service

MITREへのリンク →

Velvet Ant

Score: 7.06

Matched TTPs:

T1090.001 - Internal Proxy
T1211 - Exploitation for Defense Evasion

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Lazarus Group

Score: 0.83

Matched TTPs:

T1124 - System Time Discovery
T1588.002 - Tool
T1027.007 - Dynamic API Resolution
T1090.001 - Internal Proxy
T1566.003 - Spearphishing via Service
T1090.002 - External Proxy
T1587.001 - Malware
T1036.003 - Rename Legitimate Utilities
T1203 - Exploitation for Client Execution
T1583.006 - Web Services
T1036.004 - Masquerade Task or Service

MITREへのリンク →

Sandworm Team

Score: 0.80

Matched TTPs:

T1090 - Proxy
T1204.001 - Malicious Link
T1491.002 - External Defacement
T1190 - Exploit Public-Facing Application
T1587.001 - Malware
T1608.001 - Upload Malware
T1036 - Masquerading
T1203 - Exploitation for Client Execution
T1588.002 - Tool
T1195.002 - Compromise Software Supply Chain
T1195 - Supply Chain Compromise

MITREへのリンク →

APT28

Score: 0.70

Matched TTPs:

T1588.002 - Tool
T1498 - Network Denial of Service
T1204.001 - Malicious Link
T1190 - Exploit Public-Facing Application
T1090.002 - External Proxy
T1036 - Masquerading
T1203 - Exploitation for Client Execution
T1211 - Exploitation for Defense Evasion
T1583.006 - Web Services

MITREへのリンク →

Mustang Panda

Score: 0.69

Matched TTPs:

T1518 - Software Discovery
T1588.002 - Tool
T1027.007 - Dynamic API Resolution
T1204.001 - Malicious Link
T1176.002 - IDE Extensions
T1587.001 - Malware
T1608.001 - Upload Malware
T1203 - Exploitation for Client Execution
T1583.006 - Web Services

MITREへのリンク →

APT29

Score: 0.63

Matched TTPs:

T1588.002 - Tool
T1204.001 - Malicious Link
T1190 - Exploit Public-Facing Application
T1566.003 - Spearphishing via Service
T1090.002 - External Proxy
T1550.003 - Pass the Ticket
T1587.001 - Malware
T1203 - Exploitation for Client Execution
T1583.006 - Web Services

MITREへのリンク →

APT32

Score: 0.62

Matched TTPs:

T1588.002 - Tool
T1204.001 - Malicious Link
T1550.003 - Pass the Ticket
T1036.003 - Rename Legitimate Utilities
T1608.001 - Upload Malware
T1036 - Masquerading
T1203 - Exploitation for Client Execution
T1583.006 - Web Services
T1036.004 - Masquerade Task or Service

MITREへのリンク →

FIN7

Score: 0.62

Matched TTPs:

T1124 - System Time Discovery
T1588.002 - Tool
T1204.001 - Malicious Link
T1190 - Exploit Public-Facing Application
T1587.001 - Malware
T1608.001 - Upload Malware
T1583.006 - Web Services
T1195.002 - Compromise Software Supply Chain
T1036.004 - Masquerade Task or Service

MITREへのリンク →

Ember Bear

Score: 0.60

Matched TTPs:

T1588.005 - Exploits
T1491.002 - External Defacement
T1190 - Exploit Public-Facing Application
T1036 - Masquerading
T1203 - Exploitation for Client Execution
T1195 - Supply Chain Compromise

MITREへのリンク →

Turla

Score: 0.57

Matched TTPs:

T1124 - System Time Discovery
T1588.002 - Tool
T1204.001 - Malicious Link
T1090 - Proxy
T1090.001 - Internal Proxy
T1587.001 - Malware
T1583.006 - Web Services

MITREへのリンク →

APT41

Score: 0.56

Matched TTPs:

T1090 - Proxy
T1568.002 - Domain Generation Algorithms
T1190 - Exploit Public-Facing Application
T1203 - Exploitation for Client Execution
T1588.002 - Tool
T1195.002 - Compromise Software Supply Chain
T1036.004 - Masquerade Task or Service

MITREへのリンク →

OilRig

Score: 0.56

Matched TTPs:

T1204.001 - Malicious Link
T1566.003 - Spearphishing via Service
T1587.001 - Malware
T1608.001 - Upload Malware
T1036 - Masquerading
T1203 - Exploitation for Client Execution
T1588.002 - Tool
T1195 - Supply Chain Compromise

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る

BBSRAT Attacks Targeting Russian Orgs Linked to Roaming Tiger

概要

Indicators

類似Pulses

このPulseに関連する脅威アクター (事実ベース)

このPulseに関連する脅威アクター (推論ベース)

Related CVEs

Pulse – 脅威アクター グラフ

Pulse – 脅威アクターグラフ