Pulse Detail-

DAIRY (FAMILY)

概要

Members of this malware family are backdoors that provide file downloading, process listing, process killing, and reverse shell capabilities. This malware may also add itself to the Authorized Applications list for the Windows Firewall.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

AURIGA (FAMILY) (score: 0.63)
HACKSFASE (FAMILY) (score: 0.63)
BANGAT (FAMILY) (score: 0.63)
SWORD (FAMILY) (score: 0.63)
KURTON (FAMILY) (score: 0.62)

このPulseに関連する脅威アクター (事実ベース)

Winnti Group

Score: 4.80

Matched TTPs:

T1499.001 - OS Exhaustion Flood
T1583.006 - Web Services

MITREへのリンク →

APT41

Score: 6.82

Matched TTPs:

T1499.001 - OS Exhaustion Flood
T1218.013 - Mavinject
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Rocke

Score: 7.74

Matched TTPs:

T1499.001 - OS Exhaustion Flood
T1218.013 - Mavinject
T1583.006 - Web Services
T1597 - Search Closed Sources

MITREへのリンク →

TeamTNT

Score: 16.60

Matched TTPs:

T1499.001 - OS Exhaustion Flood
T1218.013 - Mavinject
T1558 - Steal or Forge Kerberos Tickets
T1110.003 - Password Spraying
T1583.006 - Web Services
T1597 - Search Closed Sources
T1665 - Hide Infrastructure

MITREへのリンク →

APT28

Score: 8.13

Matched TTPs:

T1499.001 - OS Exhaustion Flood
T1218.013 - Mavinject
T1558 - Steal or Forge Kerberos Tickets
T1583.006 - Web Services

MITREへのリンク →

UNC3886

Score: 6.60

Matched TTPs:

T1499.001 - OS Exhaustion Flood
T1583.006 - Web Services
T1597 - Search Closed Sources

MITREへのリンク →

Gamaredon Group

Score: 13.79

Matched TTPs:

T1218.013 - Mavinject
T1218.012 - Verclsid
T1608 - Stage Capabilities
T1583.006 - Web Services
T1597 - Search Closed Sources
T1546.017 - Udev Rules

MITREへのリンク →

Volt Typhoon

Score: 13.46

Matched TTPs:

T1218.013 - Mavinject
T1070.008 - Clear Mailbox Data
T1070.006 - Timestomp
T1583.006 - Web Services
T1665 - Hide Infrastructure

MITREへのリンク →

BRONZE BUTLER

Score: 5.12

Matched TTPs:

T1218.013 - Mavinject
T1558 - Steal or Forge Kerberos Tickets
T1597 - Search Closed Sources

MITREへのリンク →

TA2541

Score: 8.43

Matched TTPs:

T1218.013 - Mavinject
T1218.012 - Verclsid
T1597 - Search Closed Sources
T1546.017 - Udev Rules

MITREへのリンク →

Storm-1811

Score: 3.32

Matched TTPs:

T1218.013 - Mavinject
T1558 - Steal or Forge Kerberos Tickets

MITREへのリンク →

FIN7

Score: 7.39

Matched TTPs:

T1218.013 - Mavinject
T1218.012 - Verclsid
T1583.006 - Web Services
T1027.007 - Dynamic API Resolution

MITREへのリンク →

MuddyWater

Score: 10.92

Matched TTPs:

T1218.013 - Mavinject
T1518.002 - Backup Software Discovery
T1218.012 - Verclsid
T1583.006 - Web Services
T1597 - Search Closed Sources

MITREへのリンク →

WIRTE

Score: 3.88

Matched TTPs:

T1218.013 - Mavinject
T1027.014 - Polymorphic Code

MITREへのリンク →

Patchwork

Score: 3.97

Matched TTPs:

T1218.013 - Mavinject
T1665 - Hide Infrastructure

MITREへのリンク →

Earth Lusca

Score: 8.84

Matched TTPs:

T1218.013 - Mavinject
T1110.003 - Password Spraying
T1218.012 - Verclsid
T1583.006 - Web Services

MITREへのリンク →

Akira

Score: 7.07

Matched TTPs:

T1218.013 - Mavinject
T1597 - Search Closed Sources
T1601 - Modify System Image

MITREへのリンク →

APT29

Score: 7.32

Matched TTPs:

T1218.013 - Mavinject
T1138 - Application Shimming
T1218.012 - Verclsid

MITREへのリンク →

Chimera

Score: 7.89

Matched TTPs:

T1218.013 - Mavinject
T1583.006 - Web Services
T1027.007 - Dynamic API Resolution
T1665 - Hide Infrastructure

MITREへのリンク →

APT32

Score: 14.09

Matched TTPs:

T1218.013 - Mavinject
T1558 - Steal or Forge Kerberos Tickets
T1218.012 - Verclsid
T1027.014 - Polymorphic Code
T1174 - Password Filter DLL
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Ke3chang

Score: 5.05

Matched TTPs:

T1218.013 - Mavinject
T1583.006 - Web Services
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Tropic Trooper

Score: 9.33

Matched TTPs:

T1218.013 - Mavinject
T1003.001 - LSASS Memory
T1583.006 - Web Services
T1665 - Hide Infrastructure

MITREへのリンク →

Magic Hound

Score: 4.45

Matched TTPs:

T1218.013 - Mavinject
T1583.006 - Web Services
T1597 - Search Closed Sources

MITREへのリンク →

INC Ransom

Score: 5.33

Matched TTPs:

T1218.013 - Mavinject
T1597 - Search Closed Sources
T1027.007 - Dynamic API Resolution

MITREへのリンク →

OilRig

Score: 4.84

Matched TTPs:

T1218.013 - Mavinject
T1558 - Steal or Forge Kerberos Tickets
T1583.006 - Web Services

MITREへのリンク →

Machete

Score: 4.42

Matched TTPs:

T1218.013 - Mavinject
T1685.002 - Disable or Modify Cloud Log

MITREへのリンク →

Lazarus Group

Score: 25.02

Matched TTPs:

T1218.013 - Mavinject
T1070.008 - Clear Mailbox Data
T1070.006 - Timestomp
T1218.012 - Verclsid
T1583.006 - Web Services
T1597 - Search Closed Sources
T1174 - Password Filter DLL
T1055.005 - Thread Local Storage
T1665 - Hide Infrastructure

MITREへのリンク →

Blue Mockingbird

Score: 10.82

Matched TTPs:

T1218.013 - Mavinject
T1027.014 - Polymorphic Code
T1027.007 - Dynamic API Resolution
T1001.001 - Junk Data

MITREへのリンク →

Sidewinder

Score: 5.00

Matched TTPs:

T1218.013 - Mavinject
T1218.012 - Verclsid
T1583.006 - Web Services

MITREへのリンク →

menuPass

Score: 6.61

Matched TTPs:

T1218.013 - Mavinject
T1558 - Steal or Forge Kerberos Tickets
T1174 - Password Filter DLL

MITREへのリンク →

Ember Bear

Score: 5.12

Matched TTPs:

T1218.013 - Mavinject
T1558 - Steal or Forge Kerberos Tickets
T1597 - Search Closed Sources

MITREへのリンク →

APT39

Score: 8.07

Matched TTPs:

T1218.013 - Mavinject
T1564.007 - VBA Stomping
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Velvet Ant

Score: 5.33

Matched TTPs:

T1218.013 - Mavinject
T1597 - Search Closed Sources
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Kimsuky

Score: 20.06

Matched TTPs:

T1218.013 - Mavinject
T1218.012 - Verclsid
T1608 - Stage Capabilities
T1583.006 - Web Services
T1597 - Search Closed Sources
T1027.014 - Polymorphic Code
T1126 - Network Share Connection Removal
T1665 - Hide Infrastructure

MITREへのリンク →

Silence

Score: 3.53

Matched TTPs:

T1218.013 - Mavinject
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Fox Kitten

Score: 4.98

Matched TTPs:

T1218.013 - Mavinject
T1588.005 - Exploits

MITREへのリンク →

ToddyCat

Score: 5.49

Matched TTPs:

T1218.013 - Mavinject
T1583.006 - Web Services
T1665 - Hide Infrastructure

MITREへのリンク →

SideCopy

Score: 3.48

Matched TTPs:

T1218.013 - Mavinject
T1218.012 - Verclsid

MITREへのリンク →

Turla

Score: 8.30

Matched TTPs:

T1218.013 - Mavinject
T1003.001 - LSASS Memory
T1583.006 - Web Services
T1597 - Search Closed Sources

MITREへのリンク →

Mustang Panda

Score: 12.97

Matched TTPs:

T1218.013 - Mavinject
T1218.012 - Verclsid
T1608 - Stage Capabilities
T1583.006 - Web Services
T1055.005 - Thread Local Storage

MITREへのリンク →

FIN13

Score: 3.32

Matched TTPs:

T1218.013 - Mavinject
T1558 - Steal or Forge Kerberos Tickets

MITREへのリンク →

Sandworm Team

Score: 3.32

Matched TTPs:

T1218.013 - Mavinject
T1558 - Steal or Forge Kerberos Tickets

MITREへのリンク →

Molerats

Score: 7.95

Matched TTPs:

T1685.002 - Disable or Modify Cloud Log
T1583.006 - Web Services
T1546.017 - Udev Rules

MITREへのリンク →

TA505

Score: 8.93

Matched TTPs:

T1685.002 - Disable or Modify Cloud Log
T1138 - Application Shimming
T1597 - Search Closed Sources

MITREへのリンク →

Rancor

Score: 3.29

Matched TTPs:

T1685.002 - Disable or Modify Cloud Log

MITREへのリンク →

ZIRCONIUM

Score: 5.47

Matched TTPs:

T1685.002 - Disable or Modify Cloud Log
T1558 - Steal or Forge Kerberos Tickets

MITREへのリンク →

APT38

Score: 23.01

Matched TTPs:

T1685.002 - Disable or Modify Cloud Log
T1138 - Application Shimming
T1218.012 - Verclsid
T1583.006 - Web Services
T1590 - Gather Victim Network Information
T1597 - Search Closed Sources
T1174 - Password Filter DLL
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Contagious Interview

Score: 7.83

Matched TTPs:

T1558 - Steal or Forge Kerberos Tickets
T1597 - Search Closed Sources
T1126 - Network Share Connection Removal

MITREへのリンク →

Agrius

Score: 3.98

Matched TTPs:

T1558 - Steal or Forge Kerberos Tickets
T1597 - Search Closed Sources

MITREへのリンク →

LazyScripter

Score: 4.53

Matched TTPs:

T1558 - Steal or Forge Kerberos Tickets
T1218.012 - Verclsid

MITREへのリンク →

Windshift

Score: 3.70

Matched TTPs:

T1558 - Steal or Forge Kerberos Tickets
T1583.006 - Web Services

MITREへのリンク →

TA551

Score: 7.27

Matched TTPs:

T1558 - Steal or Forge Kerberos Tickets
T1218.012 - Verclsid
T1027.014 - Polymorphic Code

MITREへのリンク →

HEXANE

Score: 5.36

Matched TTPs:

T1070.006 - Timestomp
T1583.006 - Web Services

MITREへのリンク →

Cobalt Group

Score: 11.42

Matched TTPs:

T1518.002 - Backup Software Discovery
T1598.004 - Spearphishing Voice
T1027.014 - Polymorphic Code

MITREへのリンク →

Wizard Spider

Score: 8.04

Matched TTPs:

T1003.001 - LSASS Memory
T1597 - Search Closed Sources
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Salt Typhoon

Score: 3.84

Matched TTPs:

T1110.003 - Password Spraying

MITREへのリンク →

Inception

Score: 6.60

Matched TTPs:

T1218.012 - Verclsid
T1583.006 - Web Services
T1027.014 - Polymorphic Code

MITREへのリンク →

Confucius

Score: 5.17

Matched TTPs:

T1218.012 - Verclsid
T1665 - Hide Infrastructure

MITREへのリンク →

Deep Panda

Score: 4.26

Matched TTPs:

T1583.006 - Web Services
T1027.014 - Polymorphic Code

MITREへのリンク →

Play

Score: 3.31

Matched TTPs:

T1583.006 - Web Services
T1597 - Search Closed Sources

MITREへのリンク →

Storm-0501

Score: 4.26

Matched TTPs:

T1583.006 - Web Services
T1027.014 - Polymorphic Code

MITREへのリンク →

Medusa Group

Score: 10.25

Matched TTPs:

T1583.006 - Web Services
T1597 - Search Closed Sources
T1598 - Phishing for Information
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Higaisa

Score: 7.50

Matched TTPs:

T1583.006 - Web Services
T1665 - Hide Infrastructure
T1546.017 - Udev Rules

MITREへのリンク →

Scattered Spider

Score: 5.64

Matched TTPs:

T1597 - Search Closed Sources
T1588.005 - Exploits

MITREへのリンク →

FIN6

Score: 4.20

Matched TTPs:

T1597 - Search Closed Sources
T1027.007 - Dynamic API Resolution

MITREへのリンク →

BlackByte

Score: 4.20

Matched TTPs:

T1597 - Search Closed Sources
T1027.007 - Dynamic API Resolution

MITREへのリンク →

LAPSUS$

Score: 7.98

Matched TTPs:

T1601 - Modify System Image
T1588.005 - Exploits

MITREへのリンク →

Leviathan

Score: 5.90

Matched TTPs:

T1027.014 - Polymorphic Code
T1546.017 - Udev Rules

MITREへのリンク →

Daggerfly

Score: 3.29

Matched TTPs:

T1174 - Password Filter DLL

MITREへのリンク →

GALLIUM

Score: 3.29

Matched TTPs:

T1174 - Password Filter DLL

MITREへのリンク →

Moonstone Sleet

Score: 6.24

Matched TTPs:

T1126 - Network Share Connection Removal
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Threat Group-3390

Score: 3.15

Matched TTPs:

T1546.017 - Udev Rules

MITREへのリンク →

Mofang

Score: 3.15

Matched TTPs:

T1546.017 - Udev Rules

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Lazarus Group

Score: 0.77

Matched TTPs:

T1597 - Search Closed Sources
T1218.013 - Mavinject
T1174 - Password Filter DLL
T1055.005 - Thread Local Storage
T1218.012 - Verclsid
T1070.006 - Timestomp
T1070.008 - Clear Mailbox Data
T1583.006 - Web Services
T1665 - Hide Infrastructure

MITREへのリンク →

APT38

Score: 0.73

Matched TTPs:

T1138 - Application Shimming
T1590 - Gather Victim Network Information
T1597 - Search Closed Sources
T1685.002 - Disable or Modify Cloud Log
T1174 - Password Filter DLL
T1027.007 - Dynamic API Resolution
T1218.012 - Verclsid
T1583.006 - Web Services

MITREへのリンク →

Kimsuky

Score: 0.62

Matched TTPs:

T1608 - Stage Capabilities
T1597 - Search Closed Sources
T1218.013 - Mavinject
T1218.012 - Verclsid
T1583.006 - Web Services
T1665 - Hide Infrastructure
T1126 - Network Share Connection Removal
T1027.014 - Polymorphic Code

MITREへのリンク →

TeamTNT

Score: 0.57

Matched TTPs:

T1499.001 - OS Exhaustion Flood
T1597 - Search Closed Sources
T1218.013 - Mavinject
T1558 - Steal or Forge Kerberos Tickets
T1583.006 - Web Services
T1665 - Hide Infrastructure
T1110.003 - Password Spraying

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る

DAIRY (FAMILY)

概要

Indicators

類似Pulses

このPulseに関連する脅威アクター (事実ベース)

このPulseに関連する脅威アクター (推論ベース)

Related CVEs

Pulse – 脅威アクター グラフ

Pulse – 脅威アクターグラフ