Trusted Design

OceanLotus

概要

From April 2012 to date, foreign hackers launched an organized, planned, targeted long uninterrupted attack against important areas relevant to the Chinese government, research institutes, maritime agencies, sea construction, and shipping enterprises. The organization primarily used watering hole and spear phishing attacks along with social engineering to target government personnel and industry experts will specially crafted trojans.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

Tick cyberespionage group zeros in on Japan (score: 0.61)
Forbes.com Waterhole Attack (score: 0.60)
Chinese Actors attacks on US Government and EU Media (score: 0.60)
LeetMX – a Yearlong Cyber-Attack Campaign Against Targets in Latin America (score: 0.57)
New Attacks Linked to C0d0s0 Group (score: 0.56)

このPulseに関連する脅威アクター (事実ベース)

Ember Bear

Score: 4.13

Matched TTPs:

T1564.008 - Email Hiding Rules

MITREへのリンク →

Sandworm Team

Score: 17.34

Matched TTPs:

T1564.008 - Email Hiding Rules
T1566.002 - Spearphishing Link
T1193 - Spearphishing Attachment
T1049 - System Network Connections Discovery
T1102.003 - One-Way Communication

MITREへのリンク →

Sidewinder

Score: 5.05

Matched TTPs:

T1566.002 - Spearphishing Link
T1578.001 - Create Snapshot

MITREへのリンク →

Scattered Spider

Score: 12.96

Matched TTPs:

T1566.002 - Spearphishing Link
T1552.003 - Shell History
T1197 - BITS Jobs
T1027.002 - Software Packing

MITREへのリンク →

Mustang Panda

Score: 8.41

Matched TTPs:

T1566.002 - Spearphishing Link
T1024 - Custom Cryptographic Protocol
T1102.003 - One-Way Communication

MITREへのリンク →

ZIRCONIUM

Score: 8.49

Matched TTPs:

T1566.002 - Spearphishing Link
T1197 - BITS Jobs
T1578.001 - Create Snapshot

MITREへのリンク →

Kimsuky

Score: 17.66

Matched TTPs:

T1566.002 - Spearphishing Link
T1024 - Custom Cryptographic Protocol
T1552.003 - Shell History
T1102.003 - One-Way Communication
T1562.013 - Disable or Modify Network Device Firewall
T1197 - BITS Jobs

MITREへのリンク →

Magic Hound

Score: 7.65

Matched TTPs:

T1566.002 - Spearphishing Link
T1024 - Custom Cryptographic Protocol
T1547.008 - LSASS Driver

MITREへのリンク →

APT28

Score: 13.10

Matched TTPs:

T1566.002 - Spearphishing Link
T1024 - Custom Cryptographic Protocol
T1197 - BITS Jobs
T1146 - Clear Command History

MITREへのリンク →

Star Blizzard

Score: 8.41

Matched TTPs:

T1566.002 - Spearphishing Link
T1024 - Custom Cryptographic Protocol
T1102.003 - One-Way Communication

MITREへのリンク →

Moonstone Sleet

Score: 8.42

Matched TTPs:

T1566.002 - Spearphishing Link
T1197 - BITS Jobs
T1547.008 - LSASS Driver

MITREへのリンク →

CURIUM

Score: 7.57

Matched TTPs:

T1566.002 - Spearphishing Link
T1578.001 - Create Snapshot
T1547.008 - LSASS Driver

MITREへのリンク →

Dragonfly

Score: 6.30

Matched TTPs:

T1566.002 - Spearphishing Link
T1193 - Spearphishing Attachment

MITREへのリンク →

OilRig

Score: 5.19

Matched TTPs:

T1024 - Custom Cryptographic Protocol
T1547.008 - LSASS Driver

MITREへのリンク →

LAPSUS$

Score: 6.51

Matched TTPs:

T1024 - Custom Cryptographic Protocol
T1193 - Spearphishing Attachment

MITREへのリンク →

APT29

Score: 5.19

Matched TTPs:

T1024 - Custom Cryptographic Protocol
T1547.008 - LSASS Driver

MITREへのリンク →

UNC3886

Score: 6.72

Matched TTPs:

T1218 - System Binary Proxy Execution
T1578.001 - Create Snapshot

MITREへのリンク →

Sea Turtle

Score: 7.42

Matched TTPs:

T1218 - System Binary Proxy Execution
T1562.013 - Disable or Modify Network Device Firewall

MITREへのリンク →

HAFNIUM

Score: 3.62

Matched TTPs:

T1049 - System Network Connections Discovery

MITREへのリンク →

Axiom

Score: 11.44

Matched TTPs:

T1049 - System Network Connections Discovery
T1562.013 - Disable or Modify Network Device Firewall
T1160 - Launch Daemon

MITREへのリンク →

Volt Typhoon

Score: 9.50

Matched TTPs:

T1049 - System Network Connections Discovery
T1102.003 - One-Way Communication
T1578.001 - Create Snapshot

MITREへのリンク →

INC Ransom

Score: 5.81

Matched TTPs:

T1552.003 - Shell History
T1562.013 - Disable or Modify Network Device Firewall

MITREへのリンク →

Contagious Interview

Score: 8.33

Matched TTPs:

T1552.003 - Shell History
T1102.003 - One-Way Communication
T1547.008 - LSASS Driver

MITREへのリンク →

AppleJeus

Score: 5.81

Matched TTPs:

T1552.003 - Shell History
T1562.013 - Disable or Modify Network Device Firewall

MITREへのリンク →

GOLD SOUTHFIELD

Score: 3.29

Matched TTPs:

T1562.013 - Disable or Modify Network Device Firewall

MITREへのリンク →

Equation

Score: 4.13

Matched TTPs:

T1130 - Install Root Certificate

MITREへのリンク →

Strider

Score: 4.13

Matched TTPs:

T1130 - Install Root Certificate

MITREへのリンク →

APT38

Score: 4.54

Matched TTPs:

T1059.005 - Visual Basic

MITREへのリンク →

Mustard Tempest

Score: 4.54

Matched TTPs:

T1543.002 - Systemd Service

MITREへのリンク →

Lazarus Group

Score: 5.12

Matched TTPs:

T1578.001 - Create Snapshot
T1547.008 - LSASS Driver

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Sandworm Team

Score: 0.83

Matched TTPs:

T1566.002 - Spearphishing Link
T1564.008 - Email Hiding Rules
T1193 - Spearphishing Attachment
T1049 - System Network Connections Discovery
T1102.003 - One-Way Communication

MITREへのリンク →

Kimsuky

Score: 0.81

Matched TTPs:

T1566.002 - Spearphishing Link
T1197 - BITS Jobs
T1552.003 - Shell History
T1024 - Custom Cryptographic Protocol
T1102.003 - One-Way Communication
T1562.013 - Disable or Modify Network Device Firewall

MITREへのリンク →

APT28

Score: 0.64

Matched TTPs:

T1197 - BITS Jobs
T1566.002 - Spearphishing Link
T1146 - Clear Command History
T1024 - Custom Cryptographic Protocol

MITREへのリンク →

Scattered Spider

Score: 0.62

Matched TTPs:

T1197 - BITS Jobs
T1566.002 - Spearphishing Link
T1027.002 - Software Packing
T1552.003 - Shell History

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る