Trusted Design

OSX/CoinThief

概要

SecureMac has discovered a new Trojan Horse called OSX/CoinThief.A, which targets Mac OS X and spies on web traffic to steal Bitcoins. This malware has been found in the wild, and there are multiple user reports of stolen Bitcoins. The malware, which comes disguised as an app to send and receive payments on Bitcoin Stealth Addresses, instead covertly monitors all web browsing traffic in order to steal login credentials for Bitcoin wallets.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

OS X Gatekeeper exploit (score: 0.67)
MacSpy: OS X RAT as a Service (score: 0.67)
OS X / Wirelurker (score: 0.65)
PoSeidon, A Deep Dive Into Point of Sale Malware (score: 0.65)
TrojanSpy:MSIL/CoinSteal (score: 0.62)

このPulseに関連する脅威アクター (事実ベース)

Moonstone Sleet

Score: 6.84

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1091 - Replication Through Removable Media
T1547.013 - XDG Autostart Entries
T1547.008 - LSASS Driver

MITREへのリンク →

FIN8

Score: 5.50

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1547.013 - XDG Autostart Entries
T1526 - Cloud Service Discovery

MITREへのリンク →

Ke3chang

Score: 4.87

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1003.007 - Proc Filesystem
T1547.013 - XDG Autostart Entries

MITREへのリンク →

FIN7

Score: 13.92

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1091 - Replication Through Removable Media
T1011.001 - Exfiltration Over Bluetooth
T1553.004 - Install Root Certificate
T1547.013 - XDG Autostart Entries
T1490 - Inhibit System Recovery

MITREへのリンク →

HAFNIUM

Score: 9.14

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1547.013 - XDG Autostart Entries
T1055.008 - Ptrace System Calls
T1490 - Inhibit System Recovery

MITREへのリンク →

APT19

Score: 3.97

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1553.004 - Install Root Certificate

MITREへのリンク →

FIN10

Score: 4.23

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1490 - Inhibit System Recovery

MITREへのリンク →

APT32

Score: 11.97

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1597.002 - Purchase Technical Data
T1091 - Replication Through Removable Media
T1553.004 - Install Root Certificate
T1547.013 - XDG Autostart Entries
T1490 - Inhibit System Recovery

MITREへのリンク →

APT39

Score: 7.86

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1597.002 - Purchase Technical Data
T1547.013 - XDG Autostart Entries
T1569.002 - Service Execution

MITREへのリンク →

Lazarus Group

Score: 11.93

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1547.013 - XDG Autostart Entries
T1055.005 - Thread Local Storage
T1547.008 - LSASS Driver
T1569.002 - Service Execution

MITREへのリンク →

Tropic Trooper

Score: 8.63

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1683 - Generate Content
T1547.013 - XDG Autostart Entries
T1490 - Inhibit System Recovery

MITREへのリンク →

Threat Group-3390

Score: 7.47

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1091 - Replication Through Removable Media
T1547.013 - XDG Autostart Entries
T1526 - Cloud Service Discovery

MITREへのリンク →

Earth Lusca

Score: 6.06

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1003.007 - Proc Filesystem
T1091 - Replication Through Removable Media

MITREへのリンク →

Magic Hound

Score: 10.89

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1683 - Generate Content
T1553.004 - Install Root Certificate
T1547.013 - XDG Autostart Entries
T1547.008 - LSASS Driver

MITREへのリンク →

Chimera

Score: 4.87

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1003.007 - Proc Filesystem
T1547.013 - XDG Autostart Entries

MITREへのリンク →

Stealth Falcon

Score: 5.19

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1556.009 - Conditional Access Policies

MITREへのリンク →

Volt Typhoon

Score: 11.08

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1560.003 - Archive via Custom Method
T1003.007 - Proc Filesystem
T1547.013 - XDG Autostart Entries
T1569.002 - Service Execution

MITREへのリンク →

LuminousMoth

Score: 4.32

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1091 - Replication Through Removable Media
T1547.013 - XDG Autostart Entries

MITREへのリンク →

Aquatic Panda

Score: 8.71

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1003.007 - Proc Filesystem
T1144 - Gatekeeper Bypass
T1547.013 - XDG Autostart Entries

MITREへのリンク →

Gamaredon Group

Score: 10.34

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1091 - Replication Through Removable Media
T1059.013 - Container CLI/API
T1553.004 - Install Root Certificate
T1547.013 - XDG Autostart Entries

MITREへのリンク →

Wizard Spider

Score: 9.12

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1556.009 - Conditional Access Policies
T1547.013 - XDG Autostart Entries
T1526 - Cloud Service Discovery

MITREへのリンク →

APT41

Score: 8.91

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1499.001 - OS Exhaustion Flood
T1560.003 - Archive via Custom Method
T1547.013 - XDG Autostart Entries

MITREへのリンク →

OilRig

Score: 16.14

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1003.007 - Proc Filesystem
T1091 - Replication Through Removable Media
T1556.009 - Conditional Access Policies
T1547.013 - XDG Autostart Entries
T1526 - Cloud Service Discovery
T1547.008 - LSASS Driver

MITREへのリンク →

HEXANE

Score: 4.32

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1091 - Replication Through Removable Media
T1547.013 - XDG Autostart Entries

MITREへのリンク →

Windshift

Score: 4.87

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1547.013 - XDG Autostart Entries
T1547.008 - LSASS Driver

MITREへのリンク →

MuddyWater

Score: 5.97

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1059.013 - Container CLI/API
T1547.013 - XDG Autostart Entries

MITREへのリンク →

Medusa Group

Score: 4.74

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1553.004 - Install Root Certificate
T1547.013 - XDG Autostart Entries

MITREへのリンク →

Sandworm Team

Score: 4.32

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1091 - Replication Through Removable Media
T1547.013 - XDG Autostart Entries

MITREへのリンク →

Storm-1811

Score: 4.87

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1547.013 - XDG Autostart Entries
T1547.008 - LSASS Driver

MITREへのリンク →

APT3

Score: 8.03

Matched TTPs:

T1557 - Adversary-in-the-Middle
T1560.003 - Archive via Custom Method
T1553.004 - Install Root Certificate
T1547.013 - XDG Autostart Entries

MITREへのリンク →

Poseidon Group

Score: 5.12

Matched TTPs:

T1597.002 - Purchase Technical Data
T1003.007 - Proc Filesystem

MITREへのリンク →

Mustang Panda

Score: 12.63

Matched TTPs:

T1597.002 - Purchase Technical Data
T1091 - Replication Through Removable Media
T1547.013 - XDG Autostart Entries
T1526 - Cloud Service Discovery
T1055.005 - Thread Local Storage

MITREへのリンク →

Tonto Team

Score: 3.37

Matched TTPs:

T1597.002 - Purchase Technical Data
T1547.013 - XDG Autostart Entries

MITREへのリンク →

BlackByte

Score: 5.34

Matched TTPs:

T1597.002 - Purchase Technical Data
T1091 - Replication Through Removable Media
T1547.013 - XDG Autostart Entries

MITREへのリンク →

APT28

Score: 17.72

Matched TTPs:

T1597.002 - Purchase Technical Data
T1499.001 - OS Exhaustion Flood
T1553.004 - Install Root Certificate
T1146 - Clear Command History
T1547.013 - XDG Autostart Entries
T1055.008 - Ptrace System Calls

MITREへのリンク →

Leviathan

Score: 3.37

Matched TTPs:

T1597.002 - Purchase Technical Data
T1547.013 - XDG Autostart Entries

MITREへのリンク →

Winnti Group

Score: 4.06

Matched TTPs:

T1499.001 - OS Exhaustion Flood
T1547.013 - XDG Autostart Entries

MITREへのリンク →

Rocke

Score: 7.68

Matched TTPs:

T1499.001 - OS Exhaustion Flood
T1059.013 - Container CLI/API
T1547.013 - XDG Autostart Entries

MITREへのリンク →

TeamTNT

Score: 8.56

Matched TTPs:

T1499.001 - OS Exhaustion Flood
T1003.007 - Proc Filesystem
T1091 - Replication Through Removable Media
T1547.013 - XDG Autostart Entries

MITREへのリンク →

UNC3886

Score: 7.42

Matched TTPs:

T1499.001 - OS Exhaustion Flood
T1547.015 - Login Items

MITREへのリンク →

Scattered Spider

Score: 12.04

Matched TTPs:

T1560.003 - Archive via Custom Method
T1144 - Gatekeeper Bypass
T1619 - Cloud Storage Object Discovery
T1547.013 - XDG Autostart Entries

MITREへのリンク →

TA505

Score: 6.03

Matched TTPs:

T1560.003 - Archive via Custom Method
T1091 - Replication Through Removable Media
T1547.013 - XDG Autostart Entries

MITREへのリンク →

FIN13

Score: 15.37

Matched TTPs:

T1560.003 - Archive via Custom Method
T1144 - Gatekeeper Bypass
T1547.013 - XDG Autostart Entries
T1686.001 - Cloud Firewall
T1569.002 - Service Execution

MITREへのリンク →

BRONZE BUTLER

Score: 3.30

Matched TTPs:

T1003.007 - Proc Filesystem
T1547.013 - XDG Autostart Entries

MITREへのリンク →

Indrik Spider

Score: 3.30

Matched TTPs:

T1003.007 - Proc Filesystem
T1547.013 - XDG Autostart Entries

MITREへのリンク →

Turla

Score: 12.52

Matched TTPs:

T1003.007 - Proc Filesystem
T1556.009 - Conditional Access Policies
T1547.013 - XDG Autostart Entries
T1569.002 - Service Execution
T1490 - Inhibit System Recovery

MITREへのリンク →

Kimsuky

Score: 13.49

Matched TTPs:

T1003.007 - Proc Filesystem
T1091 - Replication Through Removable Media
T1553.004 - Install Root Certificate
T1547.013 - XDG Autostart Entries
T1526 - Cloud Service Discovery
T1490 - Inhibit System Recovery

MITREへのリンク →

BITTER

Score: 6.37

Matched TTPs:

T1091 - Replication Through Removable Media
T1683 - Generate Content
T1547.013 - XDG Autostart Entries

MITREへのリンク →

Contagious Interview

Score: 13.57

Matched TTPs:

T1091 - Replication Through Removable Media
T1059.006 - Python
T1651 - Cloud Administration Command
T1547.008 - LSASS Driver

MITREへのリンク →

EXOTIC LILY

Score: 4.50

Matched TTPs:

T1091 - Replication Through Removable Media
T1547.008 - LSASS Driver

MITREへのリンク →

PROMETHIUM

Score: 6.80

Matched TTPs:

T1547.015 - Login Items
T1490 - Inhibit System Recovery

MITREへのリンク →

LAPSUS$

Score: 4.13

Matched TTPs:

T1619 - Cloud Storage Object Discovery

MITREへのリンク →

RedCurl

Score: 4.13

Matched TTPs:

T1574.010 - Services File Permissions Weakness

MITREへのリンク →

FIN4

Score: 4.13

Matched TTPs:

T1574.010 - Services File Permissions Weakness

MITREへのリンク →

APT29

Score: 9.59

Matched TTPs:

T1683 - Generate Content
T1547.013 - XDG Autostart Entries
T1547.008 - LSASS Driver
T1490 - Inhibit System Recovery

MITREへのリンク →

Sea Turtle

Score: 6.29

Matched TTPs:

T1059.013 - Container CLI/API
T1490 - Inhibit System Recovery

MITREへのリンク →

Gorgon Group

Score: 3.17

Matched TTPs:

T1553.004 - Install Root Certificate
T1547.013 - XDG Autostart Entries

MITREへのリンク →

Higaisa

Score: 5.33

Matched TTPs:

T1553.004 - Install Root Certificate
T1569.002 - Service Execution

MITREへのリンク →

ToddyCat

Score: 4.92

Matched TTPs:

T1553.004 - Install Root Certificate
T1547.008 - LSASS Driver

MITREへのリンク →

Nomadic Octopus

Score: 3.17

Matched TTPs:

T1553.004 - Install Root Certificate
T1547.013 - XDG Autostart Entries

MITREへのリンク →

Play

Score: 3.44

Matched TTPs:

T1547.013 - XDG Autostart Entries
T1490 - Inhibit System Recovery

MITREへのリンク →

Ajax Security Team

Score: 3.30

Matched TTPs:

T1547.013 - XDG Autostart Entries
T1547.008 - LSASS Driver

MITREへのリンク →

BlackTech

Score: 3.15

Matched TTPs:

T1526 - Cloud Service Discovery

MITREへのリンク →

Velvet Ant

Score: 5.59

Matched TTPs:

T1569.002 - Service Execution
T1490 - Inhibit System Recovery

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

APT28

Score: 0.79

Matched TTPs:

T1547.013 - XDG Autostart Entries
T1146 - Clear Command History
T1499.001 - OS Exhaustion Flood
T1055.008 - Ptrace System Calls
T1597.002 - Purchase Technical Data
T1553.004 - Install Root Certificate

MITREへのリンク →

FIN13

Score: 0.73

Matched TTPs:

T1560.003 - Archive via Custom Method
T1547.013 - XDG Autostart Entries
T1569.002 - Service Execution
T1144 - Gatekeeper Bypass
T1686.001 - Cloud Firewall

MITREへのリンク →

OilRig

Score: 0.71

Matched TTPs:

T1556.009 - Conditional Access Policies
T1003.007 - Proc Filesystem
T1547.013 - XDG Autostart Entries
T1526 - Cloud Service Discovery
T1557 - Adversary-in-the-Middle
T1547.008 - LSASS Driver
T1091 - Replication Through Removable Media

MITREへのリンク →

FIN7

Score: 0.71

Matched TTPs:

T1547.013 - XDG Autostart Entries
T1011.001 - Exfiltration Over Bluetooth
T1557 - Adversary-in-the-Middle
T1490 - Inhibit System Recovery
T1091 - Replication Through Removable Media
T1553.004 - Install Root Certificate

MITREへのリンク →

Contagious Interview

Score: 0.65

Matched TTPs:

T1651 - Cloud Administration Command
T1091 - Replication Through Removable Media
T1059.006 - Python
T1547.008 - LSASS Driver

MITREへのリンク →

Kimsuky

Score: 0.62

Matched TTPs:

T1003.007 - Proc Filesystem
T1547.013 - XDG Autostart Entries
T1526 - Cloud Service Discovery
T1490 - Inhibit System Recovery
T1091 - Replication Through Removable Media
T1553.004 - Install Root Certificate

MITREへのリンク →

Turla

Score: 0.62

Matched TTPs:

T1556.009 - Conditional Access Policies
T1003.007 - Proc Filesystem
T1547.013 - XDG Autostart Entries
T1569.002 - Service Execution
T1490 - Inhibit System Recovery

MITREへのリンク →

Mustang Panda

Score: 0.58

Matched TTPs:

T1055.005 - Thread Local Storage
T1547.013 - XDG Autostart Entries
T1526 - Cloud Service Discovery
T1597.002 - Purchase Technical Data
T1091 - Replication Through Removable Media

MITREへのリンク →

Scattered Spider

Score: 0.57

Matched TTPs:

T1560.003 - Archive via Custom Method
T1144 - Gatekeeper Bypass
T1547.013 - XDG Autostart Entries
T1619 - Cloud Storage Object Discovery

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る