Trusted Design

JS/Nemucod

概要

JS/Nemucod is a JavaScript downloader trojan that targets users through malware spam campaigns. JS/Nemucod downloads additional malware and executes it without the user’s consent. JS/Nemucod usually arrives on an infected machine through malicious spam emails with .zip extensions. When a user opens the .zip file and double clicks the JavaScript, the default browser (Internet Explorer, Mozilla, etc.) opens and executes JavaScript.

Created: 2026-02-23

Indicators

類似Pulses

Nemu malware on Metadefender.com (score: 0.65)
Nemucod Evolves Delivery and Obfuscation Techniques to Harvest Credentials (score: 0.64)
Malspam Mar 5 2018 (score: 0.54)
JavaScript Redirecting to PUPs from WordPress (score: 0.54)
MHT: Ransomware32 - The First JavaScript Ransomware (score: 0.52)

このPulseに関連する脅威アクター (事実ベース)

Scattered Spider

Score: 12.40

Matched TTPs:

T1564.008 - Email Hiding Rules
T1204 - User Execution
T1556.009 - Conditional Access Policies

MITREへのリンク →

FIN4

Score: 4.13

Matched TTPs:

T1564.008 - Email Hiding Rules

MITREへのリンク →

Turla

Score: 3.74

Matched TTPs:

T1059.007 - JavaScript
T1189 - Drive-by Compromise

MITREへのリンク →

APT32

Score: 7.90

Matched TTPs:

T1059.007 - JavaScript
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1564.001 - Hidden Files and Directories

MITREへのリンク →

Saint Bear

Score: 5.52

Matched TTPs:

T1059.007 - JavaScript
T1203 - Exploitation for Client Execution
T1027.002 - Software Packing

MITREへのリンク →

FIN6

Score: 4.50

Matched TTPs:

T1059.007 - JavaScript
T1566.003 - Spearphishing via Service

MITREへのリンク →

Sidewinder

Score: 3.47

Matched TTPs:

T1059.007 - JavaScript
T1203 - Exploitation for Client Execution

MITREへのリンク →

MoustachedBouncer

Score: 4.03

Matched TTPs:

T1059.007 - JavaScript
T1027.002 - Software Packing

MITREへのリンク →

MuddyWater

Score: 3.47

Matched TTPs:

T1059.007 - JavaScript
T1203 - Exploitation for Client Execution

MITREへのリンク →

Earth Lusca

Score: 3.74

Matched TTPs:

T1059.007 - JavaScript
T1189 - Drive-by Compromise

MITREへのリンク →

Winter Vivern

Score: 3.74

Matched TTPs:

T1059.007 - JavaScript
T1189 - Drive-by Compromise

MITREへのリンク →

Contagious Interview

Score: 4.50

Matched TTPs:

T1059.007 - JavaScript
T1566.003 - Spearphishing via Service

MITREへのリンク →

TA505

Score: 4.03

Matched TTPs:

T1059.007 - JavaScript
T1027.002 - Software Packing

MITREへのリンク →

FIN7

Score: 4.64

Matched TTPs:

T1059.007 - JavaScript
T1564.001 - Hidden Files and Directories

MITREへのリンク →

Cobalt Group

Score: 3.47

Matched TTPs:

T1059.007 - JavaScript
T1203 - Exploitation for Client Execution

MITREへのリンク →

Higaisa

Score: 6.62

Matched TTPs:

T1059.007 - JavaScript
T1203 - Exploitation for Client Execution
T1027.015 - Compression

MITREへのリンク →

Kimsuky

Score: 8.56

Matched TTPs:

T1059.007 - JavaScript
T1176.001 - Browser Extensions
T1027.002 - Software Packing

MITREへのリンク →

Molerats

Score: 5.12

Matched TTPs:

T1059.007 - JavaScript
T1027.015 - Compression

MITREへのリンク →

Leafminer

Score: 3.74

Matched TTPs:

T1059.007 - JavaScript
T1189 - Drive-by Compromise

MITREへのリンク →

Mustang Panda

Score: 10.27

Matched TTPs:

T1059.007 - JavaScript
T1203 - Exploitation for Client Execution
T1027.007 - Dynamic API Resolution
T1564.001 - Hidden Files and Directories

MITREへのリンク →

FIN13

Score: 6.29

Matched TTPs:

T1078.001 - Default Accounts
T1564.001 - Hidden Files and Directories

MITREへのリンク →

UNC3886

Score: 9.25

Matched TTPs:

T1078.001 - Default Accounts
T1205.001 - Port Knocking
T1203 - Exploitation for Client Execution

MITREへのリンク →

Magic Hound

Score: 7.91

Matched TTPs:

T1078.001 - Default Accounts
T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

Ember Bear

Score: 5.12

Matched TTPs:

T1078.001 - Default Accounts
T1203 - Exploitation for Client Execution

MITREへのリンク →

PROMETHIUM

Score: 5.90

Matched TTPs:

T1205.001 - Port Knocking
T1189 - Drive-by Compromise

MITREへのリンク →

LAPSUS$

Score: 4.13

Matched TTPs:

T1204 - User Execution

MITREへのリンク →

APT28

Score: 10.06

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1564.001 - Hidden Files and Directories
T1550.001 - Application Access Token

MITREへのリンク →

Threat Group-3390

Score: 8.46

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1027.002 - Software Packing
T1027.015 - Compression

MITREへのリンク →

Dragonfly

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Andariel

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

The White Company

Score: 3.55

Matched TTPs:

T1203 - Exploitation for Client Execution
T1027.002 - Software Packing

MITREへのリンク →

EXOTIC LILY

Score: 4.02

Matched TTPs:

T1203 - Exploitation for Client Execution
T1566.003 - Spearphishing via Service

MITREへのリンク →

Lazarus Group

Score: 12.58

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1027.007 - Dynamic API Resolution
T1564.001 - Hidden Files and Directories
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT29

Score: 10.61

Matched TTPs:

T1203 - Exploitation for Client Execution
T1651 - Cloud Administration Command
T1027.002 - Software Packing
T1566.003 - Spearphishing via Service

MITREへのリンク →

Patchwork

Score: 5.31

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1027.002 - Software Packing

MITREへのリンク →

Axiom

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Leviathan

Score: 6.41

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1027.015 - Compression

MITREへのリンク →

APT37

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

APT3

Score: 3.55

Matched TTPs:

T1203 - Exploitation for Client Execution
T1027.002 - Software Packing

MITREへのリンク →

BRONZE BUTLER

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Transparent Tribe

Score: 5.92

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1564.001 - Hidden Files and Directories

MITREへのリンク →

Tropic Trooper

Score: 4.16

Matched TTPs:

T1203 - Exploitation for Client Execution
T1564.001 - Hidden Files and Directories

MITREへのリンク →

Aoqin Dragon

Score: 3.55

Matched TTPs:

T1203 - Exploitation for Client Execution
T1027.002 - Software Packing

MITREへのリンク →

APT41

Score: 3.55

Matched TTPs:

T1203 - Exploitation for Client Execution
T1027.002 - Software Packing

MITREへのリンク →

Elderwood

Score: 5.31

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1027.002 - Software Packing

MITREへのリンク →

Darkhotel

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

OilRig

Score: 4.02

Matched TTPs:

T1203 - Exploitation for Client Execution
T1566.003 - Spearphishing via Service

MITREへのリンク →

Storm-0501

Score: 6.19

Matched TTPs:

T1556.009 - Conditional Access Policies
T1027.002 - Software Packing

MITREへのリンク →

Windshift

Score: 4.29

Matched TTPs:

T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT38

Score: 8.36

Matched TTPs:

T1189 - Drive-by Compromise
T1027.002 - Software Packing
T1036.006 - Space after Filename

MITREへのリンク →

Dark Caracal

Score: 6.34

Matched TTPs:

T1189 - Drive-by Compromise
T1027.002 - Software Packing
T1566.003 - Spearphishing via Service

MITREへのリンク →

CURIUM

Score: 4.29

Matched TTPs:

T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

TA2541

Score: 5.20

Matched TTPs:

T1027.002 - Software Packing
T1027.015 - Compression

MITREへのリンク →

Rocke

Score: 4.72

Matched TTPs:

T1027.002 - Software Packing
T1564.001 - Hidden Files and Directories

MITREへのリンク →

Medusa Group

Score: 6.59

Matched TTPs:

T1027.002 - Software Packing
T1218.014 - MMC

MITREへのリンク →

HAFNIUM

Score: 6.80

Matched TTPs:

T1564.001 - Hidden Files and Directories
T1550.001 - Application Access Token

MITREへのリンク →

Gamaredon Group

Score: 3.15

Matched TTPs:

T1027.015 - Compression

MITREへのリンク →

Mofang

Score: 3.15

Matched TTPs:

T1027.015 - Compression

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Lazarus Group

Score: 0.77

Matched TTPs:

T1566.003 - Spearphishing via Service
T1027.007 - Dynamic API Resolution
T1564.001 - Hidden Files and Directories
T1189 - Drive-by Compromise
T1203 - Exploitation for Client Execution

MITREへのリンク →

Scattered Spider

Score: 0.75

Matched TTPs:

T1564.008 - Email Hiding Rules
T1204 - User Execution
T1556.009 - Conditional Access Policies

MITREへのリンク →

APT29

Score: 0.63

Matched TTPs:

T1027.002 - Software Packing
T1566.003 - Spearphishing via Service
T1203 - Exploitation for Client Execution
T1651 - Cloud Administration Command

MITREへのリンク →

Mustang Panda

Score: 0.63

Matched TTPs:

T1564.001 - Hidden Files and Directories
T1203 - Exploitation for Client Execution
T1059.007 - JavaScript
T1027.007 - Dynamic API Resolution

MITREへのリンク →

APT28

Score: 0.61

Matched TTPs:

T1564.001 - Hidden Files and Directories
T1189 - Drive-by Compromise
T1203 - Exploitation for Client Execution
T1550.001 - Application Access Token

MITREへのリンク →

UNC3886

Score: 0.59

Matched TTPs:

T1078.001 - Default Accounts
T1205.001 - Port Knocking
T1203 - Exploitation for Client Execution

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る