Trusted Design

BEB Ukranian CERT KILL Disk

概要

From Google Translate of the Ukranian CERT: Recently, a number of Ukrainian media in the days of local elections was attacked by unknown hackers. This is the network rather dosage publicly available information on successful hacking attacks directed at them. Before CERT-UA also addressed on this occasion and we consider it important to report some details. In general, I would like to note that the threat has the character of a well-planned order to show the ability of abnormal function compromised corporate media networks by using a tool such hackers as Black Energy (Win32 / Rootkit.BlackEnergy, Backdoor.Win64.Blakken), which is used to APT-conducting attacks. On protection against attacks of this type we wrote earlier.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

このPulseに関連する脅威アクター (事実ベース)

Winnti Group

Score: 3.29
Matched TTPs:
  • T1014 - Rootkit
MITREへのリンク →

APT41

Score: 4.76
Matched TTPs:
  • T1014 - Rootkit
  • T1190 - Exploit Public-Facing Application
MITREへのリンク →

Rocke

Score: 6.32
Matched TTPs:
  • T1014 - Rootkit
  • T1140 - Deobfuscate/Decode Files or Information
  • T1190 - Exploit Public-Facing Application
MITREへのリンク →

TeamTNT

Score: 6.95
Matched TTPs:
  • T1014 - Rootkit
  • T1587.001 - Malware
  • T1140 - Deobfuscate/Decode Files or Information
MITREへのリンク →

APT28

Score: 17.80
Matched TTPs:
  • T1014 - Rootkit
  • T1140 - Deobfuscate/Decode Files or Information
  • T1190 - Exploit Public-Facing Application
  • T1102.002 - Bidirectional Communication
  • T1498 - Network Denial of Service
  • T1669 - Wi-Fi Networks
MITREへのリンク →

UNC3886

Score: 9.44
Matched TTPs:
  • T1014 - Rootkit
  • T1587.001 - Malware
  • T1190 - Exploit Public-Facing Application
  • T1124 - System Time Discovery
MITREへのリンク →

Kimsuky

Score: 19.42
Matched TTPs:
  • T1036.007 - Double File Extension
  • T1587.001 - Malware
  • T1140 - Deobfuscate/Decode Files or Information
  • T1190 - Exploit Public-Facing Application
  • T1585.001 - Social Media Accounts
  • T1218.010 - Regsvr32
  • T1102.002 - Bidirectional Communication
  • T1078.003 - Local Accounts
MITREへのリンク →

Mustang Panda

Score: 7.80
Matched TTPs:
  • T1036.007 - Double File Extension
  • T1587.001 - Malware
  • T1140 - Deobfuscate/Decode Files or Information
MITREへのリンク →

FIN13

Score: 5.13
Matched TTPs:
  • T1587.001 - Malware
  • T1140 - Deobfuscate/Decode Files or Information
  • T1190 - Exploit Public-Facing Application
MITREへのリンク →

Moonstone Sleet

Score: 6.00
Matched TTPs:
  • T1587.001 - Malware
  • T1140 - Deobfuscate/Decode Files or Information
  • T1585.001 - Social Media Accounts
MITREへのリンク →

Indrik Spider

Score: 4.93
Matched TTPs:
  • T1587.001 - Malware
  • T1584.004 - Server
MITREへのリンク →

Lazarus Group

Score: 22.50
Matched TTPs:
  • T1587.001 - Malware
  • T1140 - Deobfuscate/Decode Files or Information
  • T1574.013 - KernelCallbackTable
  • T1585.001 - Social Media Accounts
  • T1102.002 - Bidirectional Communication
  • T1584.004 - Server
  • T1124 - System Time Discovery
  • T1561.001 - Disk Content Wipe
MITREへのリンク →

Contagious Interview

Score: 4.44
Matched TTPs:
  • T1587.001 - Malware
  • T1585.001 - Social Media Accounts
MITREへのリンク →

OilRig

Score: 10.25
Matched TTPs:
  • T1587.001 - Malware
  • T1140 - Deobfuscate/Decode Files or Information
  • T1195 - Supply Chain Compromise
  • T1573.002 - Asymmetric Cryptography
MITREへのリンク →

Sandworm Team

Score: 20.17
Matched TTPs:
  • T1587.001 - Malware
  • T1140 - Deobfuscate/Decode Files or Information
  • T1195 - Supply Chain Compromise
  • T1190 - Exploit Public-Facing Application
  • T1087.003 - Email Account
  • T1585.001 - Social Media Accounts
  • T1102.002 - Bidirectional Communication
  • T1584.004 - Server
MITREへのリンク →

Salt Typhoon

Score: 3.57
Matched TTPs:
  • T1587.001 - Malware
  • T1190 - Exploit Public-Facing Application
MITREへのリンク →

APT29

Score: 10.08
Matched TTPs:
  • T1587.001 - Malware
  • T1190 - Exploit Public-Facing Application
  • T1550.003 - Pass the Ticket
  • T1078.003 - Local Accounts
MITREへのリンク →

Play

Score: 6.23
Matched TTPs:
  • T1587.001 - Malware
  • T1190 - Exploit Public-Facing Application
  • T1078.003 - Local Accounts
MITREへのリンク →

RedCurl

Score: 8.46
Matched TTPs:
  • T1587.001 - Malware
  • T1087.003 - Email Account
  • T1573.002 - Asymmetric Cryptography
MITREへのリンク →

Cleaver

Score: 4.44
Matched TTPs:
  • T1587.001 - Malware
  • T1585.001 - Social Media Accounts
MITREへのリンク →

Moses Staff

Score: 3.57
Matched TTPs:
  • T1587.001 - Malware
  • T1190 - Exploit Public-Facing Application
MITREへのリンク →

Turla

Score: 14.15
Matched TTPs:
  • T1587.001 - Malware
  • T1140 - Deobfuscate/Decode Files or Information
  • T1102.002 - Bidirectional Communication
  • T1584.004 - Server
  • T1124 - System Time Discovery
  • T1078.003 - Local Accounts
MITREへのリンク →

Ke3chang

Score: 8.57
Matched TTPs:
  • T1587.001 - Malware
  • T1140 - Deobfuscate/Decode Files or Information
  • T1190 - Exploit Public-Facing Application
  • T1036.002 - Right-to-Left Override
MITREへのリンク →

FIN7

Score: 16.92
Matched TTPs:
  • T1587.001 - Malware
  • T1140 - Deobfuscate/Decode Files or Information
  • T1190 - Exploit Public-Facing Application
  • T1497.002 - User Activity Based Checks
  • T1102.002 - Bidirectional Communication
  • T1124 - System Time Discovery
  • T1078.003 - Local Accounts
MITREへのリンク →

BRONZE BUTLER

Score: 11.44
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1036.002 - Right-to-Left Override
  • T1550.003 - Pass the Ticket
  • T1124 - System Time Discovery
MITREへのリンク →

APT39

Score: 5.44
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1190 - Exploit Public-Facing Application
  • T1102.002 - Bidirectional Communication
MITREへのリンク →

WIRTE

Score: 4.31
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1218.010 - Regsvr32
MITREへのリンク →

Agrius

Score: 3.04
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1190 - Exploit Public-Facing Application
MITREへのリンク →

Volt Typhoon

Score: 8.46
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1190 - Exploit Public-Facing Application
  • T1584.004 - Server
  • T1124 - System Time Discovery
MITREへのリンク →

Darkhotel

Score: 8.29
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1497.002 - User Activity Based Checks
  • T1124 - System Time Discovery
MITREへのリンク →

Earth Lusca

Score: 5.87
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1190 - Exploit Public-Facing Application
  • T1584.004 - Server
MITREへのリンク →

ZIRCONIUM

Score: 6.56
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1102.002 - Bidirectional Communication
  • T1124 - System Time Discovery
MITREへのリンク →

MuddyWater

Score: 5.44
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1190 - Exploit Public-Facing Application
  • T1102.002 - Bidirectional Communication
MITREへのリンク →

Gamaredon Group

Score: 8.10
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1102.002 - Bidirectional Communication
  • T1561.001 - Disk Content Wipe
MITREへのリンク →

TA505

Score: 5.19
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1087.003 - Email Account
MITREへのリンク →

Threat Group-3390

Score: 7.17
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1190 - Exploit Public-Facing Application
  • T1608.002 - Upload Tool
MITREへのリンク →

Winter Vivern

Score: 3.04
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1190 - Exploit Public-Facing Application
MITREへのリンク →

menuPass

Score: 3.04
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1190 - Exploit Public-Facing Application
MITREへのリンク →

BlackByte

Score: 3.04
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1190 - Exploit Public-Facing Application
MITREへのリンク →

Leviathan

Score: 10.96
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1190 - Exploit Public-Facing Application
  • T1585.001 - Social Media Accounts
  • T1218.010 - Regsvr32
  • T1584.004 - Server
MITREへのリンク →

Cinnamon Tempest

Score: 3.04
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1190 - Exploit Public-Facing Application
MITREへのリンク →

Tropic Trooper

Score: 6.98
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1573.002 - Asymmetric Cryptography
  • T1078.003 - Local Accounts
MITREへのリンク →

APT19

Score: 4.31
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1218.010 - Regsvr32
MITREへのリンク →

Higaisa

Score: 4.16
Matched TTPs:
  • T1140 - Deobfuscate/Decode Files or Information
  • T1124 - System Time Discovery
MITREへのリンク →

Ember Bear

Score: 5.31
Matched TTPs:
  • T1195 - Supply Chain Compromise
  • T1190 - Exploit Public-Facing Application
MITREへのリンク →

BlackTech

Score: 4.91
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1036.002 - Right-to-Left Override
MITREへのリンク →

Magic Hound

Score: 9.83
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1087.003 - Email Account
  • T1585.001 - Social Media Accounts
  • T1102.002 - Bidirectional Communication
MITREへのリンク →

Medusa Group

Score: 10.69
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1608.002 - Upload Tool
  • T1585.001 - Social Media Accounts
  • T1573.002 - Asymmetric Cryptography
MITREへのリンク →

Sea Turtle

Score: 4.14
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1078.003 - Local Accounts
MITREへのリンク →

Storm-0501

Score: 4.22
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1218.010 - Regsvr32
MITREへのリンク →

Fox Kitten

Score: 3.81
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1585.001 - Social Media Accounts
MITREへのリンク →

Blue Mockingbird

Score: 4.22
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1218.010 - Regsvr32
MITREへのリンク →

Dragonfly

Score: 4.30
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1584.004 - Server
MITREへのリンク →

Axiom

Score: 6.01
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1001.002 - Steganography
MITREへのリンク →

HAFNIUM

Score: 4.14
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1078.003 - Local Accounts
MITREへのリンク →

Ferocious Kitten

Score: 3.44
Matched TTPs:
  • T1036.002 - Right-to-Left Override
MITREへのリンク →

Scarlet Mimic

Score: 3.44
Matched TTPs:
  • T1036.002 - Right-to-Left Override
MITREへのリンク →

APT32

Score: 11.60
Matched TTPs:
  • T1550.003 - Pass the Ticket
  • T1585.001 - Social Media Accounts
  • T1218.010 - Regsvr32
  • T1078.003 - Local Accounts
MITREへのリンク →

Scattered Spider

Score: 6.88
Matched TTPs:
  • T1585.001 - Social Media Accounts
  • T1538 - Cloud Service Dashboard
MITREへのリンク →

HEXANE

Score: 4.74
Matched TTPs:
  • T1585.001 - Social Media Accounts
  • T1102.002 - Bidirectional Communication
MITREへのリンク →

CURIUM

Score: 4.93
Matched TTPs:
  • T1585.001 - Social Media Accounts
  • T1124 - System Time Discovery
MITREへのリンク →

Cobalt Group

Score: 5.49
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1573.002 - Asymmetric Cryptography
MITREへのリンク →

Velvet Ant

Score: 5.41
Matched TTPs:
  • T1573.002 - Asymmetric Cryptography
  • T1078.003 - Local Accounts
MITREへのリンク →

Equation

Score: 4.13
Matched TTPs:
  • T1564.005 - Hidden File System
MITREへのリンク →

Strider

Score: 4.13
Matched TTPs:
  • T1564.005 - Hidden File System
MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Lazarus Group

Score: 0.81
Matched TTPs:
  • T1574.013 - KernelCallbackTable
  • T1124 - System Time Discovery
  • T1587.001 - Malware
  • T1140 - Deobfuscate/Decode Files or Information
  • T1585.001 - Social Media Accounts
  • T1561.001 - Disk Content Wipe
  • T1102.002 - Bidirectional Communication
  • T1584.004 - Server
MITREへのリンク →

Sandworm Team

Score: 0.74
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1587.001 - Malware
  • T1087.003 - Email Account
  • T1195 - Supply Chain Compromise
  • T1140 - Deobfuscate/Decode Files or Information
  • T1585.001 - Social Media Accounts
  • T1102.002 - Bidirectional Communication
  • T1584.004 - Server
MITREへのリンク →

Kimsuky

Score: 0.72
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1587.001 - Malware
  • T1140 - Deobfuscate/Decode Files or Information
  • T1036.007 - Double File Extension
  • T1585.001 - Social Media Accounts
  • T1078.003 - Local Accounts
  • T1102.002 - Bidirectional Communication
  • T1218.010 - Regsvr32
MITREへのリンク →

APT28

Score: 0.69
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1014 - Rootkit
  • T1669 - Wi-Fi Networks
  • T1140 - Deobfuscate/Decode Files or Information
  • T1498 - Network Denial of Service
  • T1102.002 - Bidirectional Communication
MITREへのリンク →

FIN7

Score: 0.65
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1124 - System Time Discovery
  • T1587.001 - Malware
  • T1497.002 - User Activity Based Checks
  • T1140 - Deobfuscate/Decode Files or Information
  • T1078.003 - Local Accounts
  • T1102.002 - Bidirectional Communication
MITREへのリンク →

Turla

Score: 0.58
Matched TTPs:
  • T1124 - System Time Discovery
  • T1587.001 - Malware
  • T1140 - Deobfuscate/Decode Files or Information
  • T1078.003 - Local Accounts
  • T1102.002 - Bidirectional Communication
  • T1584.004 - Server
MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

← Pulse一覧に戻る