Trusted Design

A Look Into Fysbis: Sofacy’s Linux Backdoor

概要

The Sofacy group, also known as APT28 and Sednit, is a fairly well known cyber espionage group believed to have ties to Russia. Their targets have spanned all across the world, with a focus on government, defense organizations and various Eastern European governments. There have been numerous reports on their activities, to the extent that a Wikipedia entry has even been created for them. The Linux malware Fysbis is a preferred tool of Sofacy, and though it is not particularly sophisticated, Linux security in general is still a maturing area, especially in regards to malware. In short, it is entirely plausible that this tool has contributed to the success of associated attacks by this group. This blog post focuses specifically on this Linux tool preferred by Sofacy and describes considerations and implications when it comes to Linux malware.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

このPulseに関連する脅威アクター (事実ベース)

Ember Bear

Score: 11.93
Matched TTPs:
  • T1564.008 - Email Hiding Rules
  • T1005 - Data from Local System
  • T1136.002 - Domain Account
  • T1218.010 - Regsvr32
MITREへのリンク →

Sandworm Team

Score: 25.25
Matched TTPs:
  • T1564.008 - Email Hiding Rules
  • T1606.002 - SAML Tokens
  • T1059.010 - AutoHotKey & AutoIT
  • T1091 - Replication Through Removable Media
  • T1005 - Data from Local System
  • T1049 - System Network Connections Discovery
  • T1122 - Component Object Model Hijacking
  • T1199 - Trusted Relationship
  • T1573 - Encrypted Channel
  • T1218.010 - Regsvr32
MITREへのリンク →

Winnti Group

Score: 3.29
Matched TTPs:
  • T1499.001 - OS Exhaustion Flood
MITREへのリンク →

APT41

Score: 8.56
Matched TTPs:
  • T1499.001 - OS Exhaustion Flood
  • T1199 - Trusted Relationship
  • T1573 - Encrypted Channel
  • T1218.010 - Regsvr32
MITREへのリンク →

Rocke

Score: 7.19
Matched TTPs:
  • T1499.001 - OS Exhaustion Flood
  • T1059.010 - AutoHotKey & AutoIT
  • T1027.004 - Compile After Delivery
MITREへのリンク →

TeamTNT

Score: 11.44
Matched TTPs:
  • T1499.001 - OS Exhaustion Flood
  • T1606.002 - SAML Tokens
  • T1003.007 - Proc Filesystem
  • T1059.010 - AutoHotKey & AutoIT
  • T1091 - Replication Through Removable Media
MITREへのリンク →

APT28

Score: 18.61
Matched TTPs:
  • T1499.001 - OS Exhaustion Flood
  • T1059.010 - AutoHotKey & AutoIT
  • T1122 - Component Object Model Hijacking
  • T1199 - Trusted Relationship
  • T1218.010 - Regsvr32
  • T1146 - Clear Command History
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

UNC3886

Score: 19.94
Matched TTPs:
  • T1499.001 - OS Exhaustion Flood
  • T1606.002 - SAML Tokens
  • T1136.002 - Domain Account
  • T1547.015 - Login Items
  • T1546.003 - Windows Management Instrumentation Event Subscription
  • T1218.010 - Regsvr32
  • T1027.004 - Compile After Delivery
MITREへのリンク →

Kimsuky

Score: 14.10
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1003.007 - Proc Filesystem
  • T1059.010 - AutoHotKey & AutoIT
  • T1091 - Replication Through Removable Media
  • T1199 - Trusted Relationship
  • T1027.014 - Polymorphic Code
  • T1027.004 - Compile After Delivery
MITREへのリンク →

FIN13

Score: 4.51
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1059.010 - AutoHotKey & AutoIT
  • T1199 - Trusted Relationship
MITREへのリンク →

Moonstone Sleet

Score: 11.09
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1059.010 - AutoHotKey & AutoIT
  • T1091 - Replication Through Removable Media
  • T1573 - Encrypted Channel
  • T1547.008 - LSASS Driver
MITREへのリンク →

Indrik Spider

Score: 8.46
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1003.007 - Proc Filesystem
  • T1498 - Network Denial of Service
MITREへのリンク →

Lazarus Group

Score: 19.79
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1059.010 - AutoHotKey & AutoIT
  • T1070.006 - Timestomp
  • T1199 - Trusted Relationship
  • T1174 - Password Filter DLL
  • T1218.010 - Regsvr32
  • T1055.005 - Thread Local Storage
  • T1547.008 - LSASS Driver
MITREへのリンク →

Contagious Interview

Score: 14.32
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1091 - Replication Through Removable Media
  • T1016 - System Network Configuration Discovery
  • T1199 - Trusted Relationship
  • T1027.004 - Compile After Delivery
  • T1547.008 - LSASS Driver
MITREへのリンク →

OilRig

Score: 19.62
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1003.007 - Proc Filesystem
  • T1059.010 - AutoHotKey & AutoIT
  • T1091 - Replication Through Removable Media
  • T1005 - Data from Local System
  • T1199 - Trusted Relationship
  • T1218.010 - Regsvr32
  • T1128 - Netsh Helper DLL
  • T1547.008 - LSASS Driver
MITREへのリンク →

LuminousMoth

Score: 7.38
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1091 - Replication Through Removable Media
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
MITREへのリンク →

Salt Typhoon

Score: 6.79
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1199 - Trusted Relationship
  • T1498 - Network Denial of Service
MITREへのリンク →

APT29

Score: 20.21
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1122 - Component Object Model Hijacking
  • T1199 - Trusted Relationship
  • T1683 - Generate Content
  • T1218.010 - Regsvr32
  • T1546.018 - Python Startup Hooks
  • T1027.004 - Compile After Delivery
  • T1547.008 - LSASS Driver
MITREへのリンク →

Aoqin Dragon

Score: 4.44
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1199 - Trusted Relationship
  • T1218.010 - Regsvr32
MITREへのリンク →

RedCurl

Score: 13.37
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1591.003 - Identify Business Tempo
  • T1122 - Component Object Model Hijacking
  • T1128 - Netsh Helper DLL
  • T1027.004 - Compile After Delivery
MITREへのリンク →

Turla

Score: 11.83
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1003.007 - Proc Filesystem
  • T1059.010 - AutoHotKey & AutoIT
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
  • T1027.004 - Compile After Delivery
MITREへのリンク →

Ke3chang

Score: 7.04
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1003.007 - Proc Filesystem
  • T1059.010 - AutoHotKey & AutoIT
  • T1199 - Trusted Relationship
MITREへのリンク →

Mustang Panda

Score: 23.93
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1059.010 - AutoHotKey & AutoIT
  • T1091 - Replication Through Removable Media
  • T1136.001 - Local Account
  • T1169 - Sudo
  • T1199 - Trusted Relationship
  • T1218.010 - Regsvr32
  • T1159 - Launch Agent
  • T1055.005 - Thread Local Storage
MITREへのリンク →

FIN7

Score: 13.95
Matched TTPs:
  • T1606.002 - SAML Tokens
  • T1059.010 - AutoHotKey & AutoIT
  • T1091 - Replication Through Removable Media
  • T1011.001 - Exfiltration Over Bluetooth
  • T1199 - Trusted Relationship
  • T1573 - Encrypted Channel
MITREへのリンク →

Darkhotel

Score: 6.50
Matched TTPs:
  • T1591.003 - Identify Business Tempo
  • T1059.010 - AutoHotKey & AutoIT
  • T1218.010 - Regsvr32
MITREへのリンク →

Gamaredon Group

Score: 7.83
Matched TTPs:
  • T1591.003 - Identify Business Tempo
  • T1059.010 - AutoHotKey & AutoIT
  • T1091 - Replication Through Removable Media
  • T1199 - Trusted Relationship
MITREへのリンク →

BRONZE BUTLER

Score: 14.96
Matched TTPs:
  • T1591.003 - Identify Business Tempo
  • T1003.007 - Proc Filesystem
  • T1059.010 - AutoHotKey & AutoIT
  • T1199 - Trusted Relationship
  • T1218.010 - Regsvr32
  • T1027.004 - Compile After Delivery
  • T1159 - Launch Agent
MITREへのリンク →

Cinnamon Tempest

Score: 8.20
Matched TTPs:
  • T1591.003 - Identify Business Tempo
  • T1059.010 - AutoHotKey & AutoIT
  • T1199 - Trusted Relationship
  • T1027.004 - Compile After Delivery
MITREへのリンク →

Aquatic Panda

Score: 5.83
Matched TTPs:
  • T1003.007 - Proc Filesystem
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
MITREへのリンク →

Chimera

Score: 3.37
Matched TTPs:
  • T1003.007 - Proc Filesystem
  • T1199 - Trusted Relationship
MITREへのリンク →

Earth Lusca

Score: 11.71
Matched TTPs:
  • T1003.007 - Proc Filesystem
  • T1059.010 - AutoHotKey & AutoIT
  • T1091 - Replication Through Removable Media
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
  • T1027.004 - Compile After Delivery
MITREへのリンク →

Volt Typhoon

Score: 15.15
Matched TTPs:
  • T1003.007 - Proc Filesystem
  • T1059.010 - AutoHotKey & AutoIT
  • T1070.006 - Timestomp
  • T1049 - System Network Connections Discovery
  • T1199 - Trusted Relationship
  • T1159 - Launch Agent
MITREへのリンク →

admin@338

Score: 4.02
Matched TTPs:
  • T1003.007 - Proc Filesystem
  • T1218.010 - Regsvr32
MITREへのリンク →

APT1

Score: 5.83
Matched TTPs:
  • T1003.007 - Proc Filesystem
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
MITREへのリンク →

APT39

Score: 4.76
Matched TTPs:
  • T1059.010 - AutoHotKey & AutoIT
  • T1199 - Trusted Relationship
  • T1027.004 - Compile After Delivery
MITREへのリンク →

WIRTE

Score: 5.16
Matched TTPs:
  • T1059.010 - AutoHotKey & AutoIT
  • T1199 - Trusted Relationship
  • T1027.014 - Polymorphic Code
MITREへのリンク →

APT38

Score: 5.70
Matched TTPs:
  • T1059.010 - AutoHotKey & AutoIT
  • T1199 - Trusted Relationship
  • T1174 - Password Filter DLL
MITREへのリンク →

Storm-1811

Score: 4.94
Matched TTPs:
  • T1059.010 - AutoHotKey & AutoIT
  • T1199 - Trusted Relationship
  • T1547.008 - LSASS Driver
MITREへのリンク →

ZIRCONIUM

Score: 3.91
Matched TTPs:
  • T1059.010 - AutoHotKey & AutoIT
  • T1027.004 - Compile After Delivery
MITREへのリンク →

MuddyWater

Score: 9.00
Matched TTPs:
  • T1059.010 - AutoHotKey & AutoIT
  • T1199 - Trusted Relationship
  • T1218.010 - Regsvr32
  • T1027.004 - Compile After Delivery
  • T1159 - Launch Agent
MITREへのリンク →

TA505

Score: 6.85
Matched TTPs:
  • T1059.010 - AutoHotKey & AutoIT
  • T1091 - Replication Through Removable Media
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
MITREへのリンク →

Threat Group-3390

Score: 15.69
Matched TTPs:
  • T1059.010 - AutoHotKey & AutoIT
  • T1091 - Replication Through Removable Media
  • T1218.003 - CMSTP
  • T1122 - Component Object Model Hijacking
  • T1199 - Trusted Relationship
  • T1573 - Encrypted Channel
  • T1218.010 - Regsvr32
MITREへのリンク →

menuPass

Score: 8.45
Matched TTPs:
  • T1059.010 - AutoHotKey & AutoIT
  • T1122 - Component Object Model Hijacking
  • T1199 - Trusted Relationship
  • T1174 - Password Filter DLL
MITREへのリンク →

BlackByte

Score: 3.54
Matched TTPs:
  • T1059.010 - AutoHotKey & AutoIT
  • T1091 - Replication Through Removable Media
MITREへのリンク →

Leviathan

Score: 5.81
Matched TTPs:
  • T1059.010 - AutoHotKey & AutoIT
  • T1027.014 - Polymorphic Code
  • T1218.010 - Regsvr32
MITREへのリンク →

Tropic Trooper

Score: 12.18
Matched TTPs:
  • T1059.010 - AutoHotKey & AutoIT
  • T1683 - Generate Content
  • T1218.010 - Regsvr32
  • T1128 - Netsh Helper DLL
  • T1159 - Launch Agent
MITREへのリンク →

APT19

Score: 5.16
Matched TTPs:
  • T1059.010 - AutoHotKey & AutoIT
  • T1199 - Trusted Relationship
  • T1027.014 - Polymorphic Code
MITREへのリンク →

Higaisa

Score: 3.06
Matched TTPs:
  • T1059.010 - AutoHotKey & AutoIT
  • T1218.010 - Regsvr32
MITREへのリンク →

TA2541

Score: 8.03
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
  • T1128 - Netsh Helper DLL
MITREへのリンク →

LazyScripter

Score: 4.43
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1136.002 - Domain Account
MITREへのリンク →

SideCopy

Score: 4.72
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1159 - Launch Agent
MITREへのリンク →

BITTER

Score: 7.94
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1199 - Trusted Relationship
  • T1683 - Generate Content
  • T1218.010 - Regsvr32
MITREへのリンク →

APT32

Score: 10.35
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1199 - Trusted Relationship
  • T1027.014 - Polymorphic Code
  • T1174 - Password Filter DLL
  • T1218.010 - Regsvr32
MITREへのリンク →

HEXANE

Score: 9.41
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1070.006 - Timestomp
  • T1199 - Trusted Relationship
  • T1159 - Launch Agent
MITREへのリンク →

Saint Bear

Score: 3.47
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1218.010 - Regsvr32
MITREへのリンク →

EXOTIC LILY

Score: 5.99
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1218.010 - Regsvr32
  • T1547.008 - LSASS Driver
MITREへのリンク →

APT42

Score: 5.57
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1199 - Trusted Relationship
  • T1128 - Netsh Helper DLL
MITREへのリンク →

Medusa Group

Score: 12.27
Matched TTPs:
  • T1218.003 - CMSTP
  • T1199 - Trusted Relationship
  • T1128 - Netsh Helper DLL
  • T1598 - Phishing for Information
MITREへのリンク →

LAPSUS$

Score: 6.05
Matched TTPs:
  • T1136.002 - Domain Account
  • T1122 - Component Object Model Hijacking
  • T1199 - Trusted Relationship
MITREへのリンク →

Metador

Score: 3.31
Matched TTPs:
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
MITREへのリンク →

Andariel

Score: 3.95
Matched TTPs:
  • T1136.002 - Domain Account
  • T1218.010 - Regsvr32
MITREへのリンク →

BackdoorDiplomacy

Score: 3.31
Matched TTPs:
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
MITREへのリンク →

Scattered Spider

Score: 7.15
Matched TTPs:
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
  • T1498 - Network Denial of Service
MITREへのリンク →

Equation

Score: 4.54
Matched TTPs:
  • T1589.003 - Employee Names
MITREへのリンク →

HAFNIUM

Score: 6.37
Matched TTPs:
  • T1049 - System Network Connections Discovery
  • T1122 - Component Object Model Hijacking
MITREへのリンク →

Axiom

Score: 5.12
Matched TTPs:
  • T1049 - System Network Connections Discovery
  • T1218.010 - Regsvr32
MITREへのリンク →

PROMETHIUM

Score: 4.13
Matched TTPs:
  • T1547.015 - Login Items
MITREへのリンク →

APT33

Score: 6.48
Matched TTPs:
  • T1567.001 - Exfiltration to Code Repository
  • T1199 - Trusted Relationship
  • T1218.010 - Regsvr32
MITREへのリンク →

Wizard Spider

Score: 4.98
Matched TTPs:
  • T1567.001 - Exfiltration to Code Repository
  • T1199 - Trusted Relationship
MITREへのリンク →

APT5

Score: 4.13
Matched TTPs:
  • T1546.003 - Windows Management Instrumentation Event Subscription
MITREへのリンク →

GOLD SOUTHFIELD

Score: 5.67
Matched TTPs:
  • T1122 - Component Object Model Hijacking
  • T1573 - Encrypted Channel
MITREへのリンク →

POLONIUM

Score: 3.60
Matched TTPs:
  • T1122 - Component Object Model Hijacking
  • T1199 - Trusted Relationship
MITREへのリンク →

Sea Turtle

Score: 5.09
Matched TTPs:
  • T1122 - Component Object Model Hijacking
  • T1199 - Trusted Relationship
  • T1218.010 - Regsvr32
MITREへのリンク →

Inception

Score: 7.83
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1027.014 - Polymorphic Code
  • T1218.010 - Regsvr32
  • T1159 - Launch Agent
MITREへのリンク →

Magic Hound

Score: 6.99
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1683 - Generate Content
  • T1547.008 - LSASS Driver
MITREへのリンク →

FIN8

Score: 3.60
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1128 - Netsh Helper DLL
MITREへのリンク →

GALLIUM

Score: 4.13
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1174 - Password Filter DLL
MITREへのリンク →

FIN6

Score: 6.12
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1128 - Netsh Helper DLL
  • T1547.008 - LSASS Driver
MITREへのリンク →

Cobalt Group

Score: 10.76
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1027.014 - Polymorphic Code
  • T1573 - Encrypted Channel
  • T1218.010 - Regsvr32
  • T1128 - Netsh Helper DLL
MITREへのリンク →

Dragonfly

Score: 7.61
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1573 - Encrypted Channel
  • T1218.010 - Regsvr32
  • T1027.004 - Compile After Delivery
MITREへのリンク →

Blue Mockingbird

Score: 3.60
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1027.014 - Polymorphic Code
MITREへのリンク →

Daggerfly

Score: 6.21
Matched TTPs:
  • T1573 - Encrypted Channel
  • T1174 - Password Filter DLL
MITREへのリンク →

Sidewinder

Score: 4.24
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1159 - Launch Agent
MITREへのリンク →

APT37

Score: 3.83
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1027.004 - Compile After Delivery
MITREへのリンク →

Tonto Team

Score: 3.83
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1027.004 - Compile After Delivery
MITREへのリンク →

Velvet Ant

Score: 6.88
Matched TTPs:
  • T1128 - Netsh Helper DLL
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Windshift

Score: 5.27
Matched TTPs:
  • T1159 - Launch Agent
  • T1547.008 - LSASS Driver
MITREへのリンク →

PLATINUM

Score: 4.54
Matched TTPs:
  • T1686 - Disable or Modify System Firewall
MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Sandworm Team

Score: 0.84
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1218.010 - Regsvr32
  • T1059.010 - AutoHotKey & AutoIT
  • T1122 - Component Object Model Hijacking
  • T1606.002 - SAML Tokens
  • T1005 - Data from Local System
  • T1199 - Trusted Relationship
  • T1564.008 - Email Hiding Rules
  • T1049 - System Network Connections Discovery
  • T1573 - Encrypted Channel
MITREへのリンク →

Mustang Panda

Score: 0.79
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1169 - Sudo
  • T1218.010 - Regsvr32
  • T1055.005 - Thread Local Storage
  • T1059.010 - AutoHotKey & AutoIT
  • T1136.001 - Local Account
  • T1606.002 - SAML Tokens
  • T1159 - Launch Agent
  • T1199 - Trusted Relationship
MITREへのリンク →

APT29

Score: 0.71
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1122 - Component Object Model Hijacking
  • T1606.002 - SAML Tokens
  • T1027.004 - Compile After Delivery
  • T1546.018 - Python Startup Hooks
  • T1683 - Generate Content
  • T1199 - Trusted Relationship
  • T1547.008 - LSASS Driver
MITREへのリンク →

APT28

Score: 0.70
Matched TTPs:
  • T1566.003 - Spearphishing via Service
  • T1218.010 - Regsvr32
  • T1059.010 - AutoHotKey & AutoIT
  • T1122 - Component Object Model Hijacking
  • T1499.001 - OS Exhaustion Flood
  • T1199 - Trusted Relationship
  • T1146 - Clear Command History
MITREへのリンク →

UNC3886

Score: 0.69
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1547.015 - Login Items
  • T1606.002 - SAML Tokens
  • T1027.004 - Compile After Delivery
  • T1499.001 - OS Exhaustion Flood
  • T1546.003 - Windows Management Instrumentation Event Subscription
  • T1136.002 - Domain Account
MITREへのリンク →

Lazarus Group

Score: 0.67
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1055.005 - Thread Local Storage
  • T1174 - Password Filter DLL
  • T1059.010 - AutoHotKey & AutoIT
  • T1606.002 - SAML Tokens
  • T1070.006 - Timestomp
  • T1199 - Trusted Relationship
  • T1547.008 - LSASS Driver
MITREへのリンク →

OilRig

Score: 0.67
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1218.010 - Regsvr32
  • T1059.010 - AutoHotKey & AutoIT
  • T1606.002 - SAML Tokens
  • T1128 - Netsh Helper DLL
  • T1003.007 - Proc Filesystem
  • T1005 - Data from Local System
  • T1199 - Trusted Relationship
  • T1547.008 - LSASS Driver
MITREへのリンク →

Threat Group-3390

Score: 0.55
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1218.010 - Regsvr32
  • T1059.010 - AutoHotKey & AutoIT
  • T1122 - Component Object Model Hijacking
  • T1218.003 - CMSTP
  • T1199 - Trusted Relationship
  • T1573 - Encrypted Channel
MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

← Pulse一覧に戻る