Trusted Design

Ransomware: CryptoWall

概要

IOCs derived from VirusTotal and Hybrid Analysis Trojan.Cryptowall is a Trojan horse that encrypts files on the compromised computer. It then asks the user to pay to have the files decrypted. The threat typically arrives on the affected computer through spam emails, exploit kits hosted through malicious ads or compromised sites, or other malware.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

CryptoWall v4 Emerges Days After Cyber Threat Alliance Report (score: 0.83)
CRYPTOWALL 4 - THE EVOLUTION CONTINUES (score: 0.71)
Cryptowall Spam: My Resume Protects All Your Files (score: 0.70)
CryptoDefense Ransomeware (score: 0.68)
MHT: CryptoJoker Ransomware (score: 0.67)

このPulseに関連する脅威アクター (事実ベース)

Scattered Spider

Score: 4.13

Matched TTPs:

T1564.008 - Email Hiding Rules

MITREへのリンク →

FIN4

Score: 4.13

Matched TTPs:

T1564.008 - Email Hiding Rules

MITREへのリンク →

Inception

Score: 3.09

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1203 - Exploitation for Client Execution

MITREへのリンク →

Elderwood

Score: 3.09

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1203 - Exploitation for Client Execution

MITREへのリンク →

Darkhotel

Score: 3.09

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1203 - Exploitation for Client Execution

MITREへのリンク →

Transparent Tribe

Score: 3.09

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1203 - Exploitation for Client Execution

MITREへのリンク →

APT28

Score: 9.62

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution
T1550.001 - Application Access Token

MITREへのリンク →

Leviathan

Score: 9.07

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1203 - Exploitation for Client Execution
T1584.004 - Server
T1027.015 - Compression

MITREへのリンク →

Sidewinder

Score: 3.09

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1203 - Exploitation for Client Execution

MITREへのリンク →

APT39

Score: 3.99

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1102.002 - Bidirectional Communication

MITREへのリンク →

Lazarus Group

Score: 15.60

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1560.003 - Archive via Custom Method
T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution
T1584.004 - Server
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Saint Bear

Score: 3.09

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1203 - Exploitation for Client Execution

MITREへのリンク →

APT33

Score: 3.09

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1203 - Exploitation for Client Execution

MITREへのリンク →

BITTER

Score: 6.71

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1573 - Encrypted Channel
T1203 - Exploitation for Client Execution

MITREへのリンク →

Higaisa

Score: 6.24

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1203 - Exploitation for Client Execution
T1027.015 - Compression

MITREへのリンク →

Threat Group-3390

Score: 9.39

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1055.012 - Process Hollowing
T1203 - Exploitation for Client Execution
T1027.015 - Compression

MITREへのリンク →

TA2541

Score: 7.90

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1055.012 - Process Hollowing
T1027.015 - Compression

MITREへのリンク →

Magic Hound

Score: 7.61

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1573 - Encrypted Channel
T1102.002 - Bidirectional Communication

MITREへのリンク →

Tropic Trooper

Score: 6.71

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1573 - Encrypted Channel
T1203 - Exploitation for Client Execution

MITREへのリンク →

Mofang

Score: 4.75

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1027.015 - Compression

MITREへのリンク →

menuPass

Score: 4.75

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1055.012 - Process Hollowing

MITREへのリンク →

OilRig

Score: 3.09

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1203 - Exploitation for Client Execution

MITREへのリンク →

APT32

Score: 3.09

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1203 - Exploitation for Client Execution

MITREへのリンク →

FIN6

Score: 3.15

Matched TTPs:

T1560.003 - Archive via Custom Method

MITREへのリンク →

CopyKittens

Score: 3.15

Matched TTPs:

T1560.003 - Archive via Custom Method

MITREへのリンク →

Mustang Panda

Score: 13.32

Matched TTPs:

T1560.003 - Archive via Custom Method
T1678 - Delay Execution
T1203 - Exploitation for Client Execution
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Kimsuky

Score: 12.83

Matched TTPs:

T1560.003 - Archive via Custom Method
T1055.012 - Process Hollowing
T1102.002 - Bidirectional Communication
T1588.005 - Exploits

MITREへのリンク →

UNC3886

Score: 4.65

Matched TTPs:

T1560.003 - Archive via Custom Method
T1203 - Exploitation for Client Execution

MITREへのリンク →

Lotus Blossom

Score: 3.15

Matched TTPs:

T1560.003 - Archive via Custom Method

MITREへのリンク →

Gorgon Group

Score: 3.15

Matched TTPs:

T1055.012 - Process Hollowing

MITREへのリンク →

Patchwork

Score: 4.65

Matched TTPs:

T1055.012 - Process Hollowing
T1203 - Exploitation for Client Execution

MITREへのリンク →

BlackByte

Score: 3.15

Matched TTPs:

T1055.012 - Process Hollowing

MITREへのリンク →

APT29

Score: 9.65

Matched TTPs:

T1573 - Encrypted Channel
T1203 - Exploitation for Client Execution
T1090.004 - Domain Fronting

MITREへのリンク →

APT37

Score: 3.89

Matched TTPs:

T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution

MITREへのリンク →

APT12

Score: 3.89

Matched TTPs:

T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution

MITREへのリンク →

Turla

Score: 5.23

Matched TTPs:

T1102.002 - Bidirectional Communication
T1584.004 - Server

MITREへのリンク →

Sandworm Team

Score: 6.72

Matched TTPs:

T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution
T1584.004 - Server

MITREへのリンク →

MuddyWater

Score: 3.89

Matched TTPs:

T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution

MITREへのリンク →

Gamaredon Group

Score: 5.55

Matched TTPs:

T1102.002 - Bidirectional Communication
T1027.015 - Compression

MITREへのリンク →

Dragonfly

Score: 4.33

Matched TTPs:

T1203 - Exploitation for Client Execution
T1584.004 - Server

MITREへのリンク →

Ember Bear

Score: 5.63

Matched TTPs:

T1203 - Exploitation for Client Execution
T1588.005 - Exploits

MITREへのリンク →

Equation

Score: 4.13

Matched TTPs:

T1564.005 - Hidden File System

MITREへのリンク →

Strider

Score: 4.13

Matched TTPs:

T1564.005 - Hidden File System

MITREへのリンク →

HAFNIUM

Score: 4.13

Matched TTPs:

T1550.001 - Application Access Token

MITREへのリンク →

Molerats

Score: 3.15

Matched TTPs:

T1027.015 - Compression

MITREへのリンク →

Medusa Group

Score: 4.54

Matched TTPs:

T1218.014 - MMC

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Lazarus Group

Score: 0.77

Matched TTPs:

T1027.013 - Encrypted/Encoded File
T1027.007 - Dynamic API Resolution
T1102.002 - Bidirectional Communication
T1560.003 - Archive via Custom Method
T1584.004 - Server
T1203 - Exploitation for Client Execution

MITREへのリンク →

Mustang Panda

Score: 0.68

Matched TTPs:

T1203 - Exploitation for Client Execution
T1678 - Delay Execution
T1560.003 - Archive via Custom Method
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Kimsuky

Score: 0.64

Matched TTPs:

T1588.005 - Exploits
T1055.012 - Process Hollowing
T1102.002 - Bidirectional Communication
T1560.003 - Archive via Custom Method

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る