Trusted Design

Updated BlackEnergy Trojan Grows More Powerful (McAfee)

概要

In late December, a cyberattack caused a power outage in the Ukraine, plunging hundreds of thousands of citizens into darkness for hours. Threat researchers soon confirmed that the BlackEnergy malware package, first developed in 2007, was the culprit. They also discovered that the malware has been significantly upgraded since its first release. The initial BlackEnergy was a simple Trojan with distributed denial of service capabilities. Since then, there have been two upgrades.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

BlackEnergy APT Attacks in Ukraine employ spearphishing Word (score: 0.74)
BlackEnergy by the SSHBearDoor (score: 0.73)
20160119: Ukraine Power Industry Cyberattacks (score: 0.71)
New wave of cyberattacks against Ukrainian power industry (score: 0.71)
BlackEnergy Malware (score: 0.67)

このPulseに関連する脅威アクター (事実ベース)

APT41

Score: 9.53

Matched TTPs:

T1069 - Permission Groups Discovery
T1190 - Exploit Public-Facing Application
T1203 - Exploitation for Client Execution
T1102.001 - Dead Drop Resolver

MITREへのリンク →

Scattered Spider

Score: 7.54

Matched TTPs:

T1069 - Permission Groups Discovery
T1588.001 - Malware
T1562.001 - Disable or Modify Tools

MITREへのリンク →

TA505

Score: 9.51

Matched TTPs:

T1069 - Permission Groups Discovery
T1608.001 - Upload Malware
T1588.001 - Malware
T1562.001 - Disable or Modify Tools

MITREへのリンク →

Volt Typhoon

Score: 10.02

Matched TTPs:

T1069 - Permission Groups Discovery
T1007 - System Service Discovery
T1190 - Exploit Public-Facing Application
T1518 - Software Discovery

MITREへのリンク →

APT3

Score: 4.78

Matched TTPs:

T1069 - Permission Groups Discovery
T1203 - Exploitation for Client Execution

MITREへのリンク →

FIN13

Score: 6.85

Matched TTPs:

T1069 - Permission Groups Discovery
T1587.001 - Malware
T1190 - Exploit Public-Facing Application

MITREへのリンク →

Kimsuky

Score: 22.89

Matched TTPs:

T1587.001 - Malware
T1007 - System Service Discovery
T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1562.001 - Disable or Modify Tools
T1055.012 - Process Hollowing
T1218.010 - Regsvr32
T1587 - Develop Capabilities
T1102.001 - Dead Drop Resolver

MITREへのリンク →

Moonstone Sleet

Score: 7.91

Matched TTPs:

T1587.001 - Malware
T1608.001 - Upload Malware
T1587 - Develop Capabilities

MITREへのリンク →

Indrik Spider

Score: 6.42

Matched TTPs:

T1587.001 - Malware
T1007 - System Service Discovery
T1562.001 - Disable or Modify Tools

MITREへのリンク →

Lazarus Group

Score: 12.80

Matched TTPs:

T1587.001 - Malware
T1562.001 - Disable or Modify Tools
T1036.003 - Rename Legitimate Utilities
T1203 - Exploitation for Client Execution
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Contagious Interview

Score: 14.25

Matched TTPs:

T1587.001 - Malware
T1608.001 - Upload Malware
T1204.005 - Malicious Library
T1562.001 - Disable or Modify Tools
T1587 - Develop Capabilities

MITREへのリンク →

OilRig

Score: 11.93

Matched TTPs:

T1587.001 - Malware
T1007 - System Service Discovery
T1608.001 - Upload Malware
T1195 - Supply Chain Compromise
T1203 - Exploitation for Client Execution

MITREへのリンク →

UNC3886

Score: 9.31

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1588.001 - Malware
T1562.001 - Disable or Modify Tools
T1203 - Exploitation for Client Execution

MITREへのリンク →

LuminousMoth

Score: 6.53

Matched TTPs:

T1587.001 - Malware
T1608.001 - Upload Malware
T1588.001 - Malware

MITREへのリンク →

Sandworm Team

Score: 10.88

Matched TTPs:

T1587.001 - Malware
T1608.001 - Upload Malware
T1195 - Supply Chain Compromise
T1190 - Exploit Public-Facing Application
T1203 - Exploitation for Client Execution

MITREへのリンク →

Salt Typhoon

Score: 3.57

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application

MITREへのリンク →

APT29

Score: 5.06

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1203 - Exploitation for Client Execution

MITREへのリンク →

Play

Score: 5.36

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1562.001 - Disable or Modify Tools

MITREへのリンク →

Aoqin Dragon

Score: 3.59

Matched TTPs:

T1587.001 - Malware
T1203 - Exploitation for Client Execution

MITREへのリンク →

Moses Staff

Score: 3.57

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application

MITREへのリンク →

Turla

Score: 8.87

Matched TTPs:

T1587.001 - Malware
T1007 - System Service Discovery
T1588.001 - Malware
T1562.001 - Disable or Modify Tools

MITREへのリンク →

Ke3chang

Score: 6.09

Matched TTPs:

T1587.001 - Malware
T1007 - System Service Discovery
T1190 - Exploit Public-Facing Application

MITREへのリンク →

Mustang Panda

Score: 12.44

Matched TTPs:

T1587.001 - Malware
T1608.001 - Upload Malware
T1203 - Exploitation for Client Execution
T1518 - Software Discovery
T1027.007 - Dynamic API Resolution

MITREへのリンク →

TeamTNT

Score: 8.39

Matched TTPs:

T1587.001 - Malware
T1007 - System Service Discovery
T1608.001 - Upload Malware
T1562.001 - Disable or Modify Tools

MITREへのリンク →

FIN7

Score: 5.54

Matched TTPs:

T1587.001 - Malware
T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application

MITREへのリンク →

BRONZE BUTLER

Score: 11.85

Matched TTPs:

T1007 - System Service Discovery
T1562.001 - Disable or Modify Tools
T1203 - Exploitation for Client Execution
T1518 - Software Discovery
T1102.001 - Dead Drop Resolver

MITREへのリンク →

Aquatic Panda

Score: 6.78

Matched TTPs:

T1007 - System Service Discovery
T1588.001 - Malware
T1562.001 - Disable or Modify Tools

MITREへのリンク →

Earth Lusca

Score: 8.42

Matched TTPs:

T1007 - System Service Discovery
T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1588.001 - Malware

MITREへのリンク →

admin@338

Score: 4.02

Matched TTPs:

T1007 - System Service Discovery
T1203 - Exploitation for Client Execution

MITREへのリンク →

APT1

Score: 4.98

Matched TTPs:

T1007 - System Service Discovery
T1588.001 - Malware

MITREへのリンク →

BlackByte

Score: 12.52

Matched TTPs:

T1562 - Impair Defenses
T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1562.001 - Disable or Modify Tools
T1055.012 - Process Hollowing

MITREへのリンク →

Magic Hound

Score: 7.40

Matched TTPs:

T1562 - Impair Defenses
T1190 - Exploit Public-Facing Application
T1562.001 - Disable or Modify Tools

MITREへのリンク →

TA2541

Score: 9.38

Matched TTPs:

T1608.001 - Upload Malware
T1588.001 - Malware
T1562.001 - Disable or Modify Tools
T1055.012 - Process Hollowing

MITREへのリンク →

Mustard Tempest

Score: 6.51

Matched TTPs:

T1608.001 - Upload Malware
T1608.006 - SEO Poisoning

MITREへのリンク →

LazyScripter

Score: 4.43

Matched TTPs:

T1608.001 - Upload Malware
T1588.001 - Malware

MITREへのリンク →

Gamaredon Group

Score: 8.31

Matched TTPs:

T1608.001 - Upload Malware
T1562.001 - Disable or Modify Tools
T1001 - Data Obfuscation

MITREへのリンク →

Threat Group-3390

Score: 8.09

Matched TTPs:

T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1055.012 - Process Hollowing
T1203 - Exploitation for Client Execution

MITREへのリンク →

SideCopy

Score: 4.72

Matched TTPs:

T1608.001 - Upload Malware
T1518 - Software Discovery

MITREへのリンク →

BITTER

Score: 3.47

Matched TTPs:

T1608.001 - Upload Malware
T1203 - Exploitation for Client Execution

MITREへのリンク →

APT32

Score: 9.50

Matched TTPs:

T1608.001 - Upload Malware
T1218.010 - Regsvr32
T1036.003 - Rename Legitimate Utilities
T1203 - Exploitation for Client Execution

MITREへのリンク →

HEXANE

Score: 4.72

Matched TTPs:

T1608.001 - Upload Malware
T1518 - Software Discovery

MITREへのリンク →

Saint Bear

Score: 5.26

Matched TTPs:

T1608.001 - Upload Malware
T1562.001 - Disable or Modify Tools
T1203 - Exploitation for Client Execution

MITREへのリンク →

EXOTIC LILY

Score: 3.47

Matched TTPs:

T1608.001 - Upload Malware
T1203 - Exploitation for Client Execution

MITREへのリンク →

Ember Bear

Score: 11.06

Matched TTPs:

T1195 - Supply Chain Compromise
T1190 - Exploit Public-Facing Application
T1588.001 - Malware
T1562.001 - Disable or Modify Tools
T1203 - Exploitation for Client Execution

MITREへのリンク →

Rocke

Score: 6.55

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1562.001 - Disable or Modify Tools
T1102.001 - Dead Drop Resolver

MITREへのリンク →

APT28

Score: 7.10

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1203 - Exploitation for Client Execution
T1211 - Exploitation for Defense Evasion

MITREへのリンク →

BackdoorDiplomacy

Score: 3.93

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1588.001 - Malware

MITREへのリンク →

Medusa Group

Score: 3.27

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1562.001 - Disable or Modify Tools

MITREへのリンク →

Storm-0501

Score: 4.22

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1218.010 - Regsvr32

MITREへのリンク →

Agrius

Score: 3.27

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1562.001 - Disable or Modify Tools

MITREへのリンク →

menuPass

Score: 7.91

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1055.012 - Process Hollowing
T1036.003 - Rename Legitimate Utilities

MITREへのリンク →

Blue Mockingbird

Score: 4.22

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1218.010 - Regsvr32

MITREへのリンク →

GALLIUM

Score: 4.76

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1036.003 - Rename Legitimate Utilities

MITREへのリンク →

Leviathan

Score: 5.71

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1218.010 - Regsvr32
T1203 - Exploitation for Client Execution

MITREへのリンク →

INC Ransom

Score: 3.27

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1562.001 - Disable or Modify Tools

MITREへのリンク →

Axiom

Score: 7.50

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1203 - Exploitation for Client Execution
T1001.002 - Steganography

MITREへのリンク →

MuddyWater

Score: 7.51

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1562.001 - Disable or Modify Tools
T1203 - Exploitation for Client Execution
T1518 - Software Discovery

MITREへのリンク →

Andariel

Score: 3.95

Matched TTPs:

T1588.001 - Malware
T1203 - Exploitation for Client Execution

MITREへのリンク →

Equation

Score: 4.54

Matched TTPs:

T1542.002 - Component Firmware

MITREへのリンク →

Velvet Ant

Score: 5.93

Matched TTPs:

T1562.001 - Disable or Modify Tools
T1211 - Exploitation for Defense Evasion

MITREへのリンク →

Gorgon Group

Score: 4.95

Matched TTPs:

T1562.001 - Disable or Modify Tools
T1055.012 - Process Hollowing

MITREへのリンク →

APT38

Score: 5.08

Matched TTPs:

T1562.001 - Disable or Modify Tools
T1036.003 - Rename Legitimate Utilities

MITREへのリンク →

Patchwork

Score: 7.93

Matched TTPs:

T1055.012 - Process Hollowing
T1203 - Exploitation for Client Execution
T1102.001 - Dead Drop Resolver

MITREへのリンク →

Cobalt Group

Score: 4.24

Matched TTPs:

T1218.010 - Regsvr32
T1203 - Exploitation for Client Execution

MITREへのリンク →

Inception

Score: 6.99

Matched TTPs:

T1218.010 - Regsvr32
T1203 - Exploitation for Client Execution
T1518 - Software Discovery

MITREへのリンク →

Daggerfly

Score: 3.29

Matched TTPs:

T1036.003 - Rename Legitimate Utilities

MITREへのリンク →

Sidewinder

Score: 4.24

Matched TTPs:

T1203 - Exploitation for Client Execution
T1518 - Software Discovery

MITREへのリンク →

Tropic Trooper

Score: 4.24

Matched TTPs:

T1203 - Exploitation for Client Execution
T1518 - Software Discovery

MITREへのリンク →

PLATINUM

Score: 4.54

Matched TTPs:

T1056.004 - Credential API Hooking

MITREへのリンク →

RTM

Score: 3.29

Matched TTPs:

T1102.001 - Dead Drop Resolver

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Kimsuky

Score: 0.81

Matched TTPs:

T1587.001 - Malware
T1190 - Exploit Public-Facing Application
T1055.012 - Process Hollowing
T1608.001 - Upload Malware
T1007 - System Service Discovery
T1218.010 - Regsvr32
T1587 - Develop Capabilities
T1562.001 - Disable or Modify Tools
T1102.001 - Dead Drop Resolver

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る