Trusted Design

Locky: New Ransomware Mimics Dridex-Style Distribution

概要

Ransomware persists as one of the top crimeware threats thus far into 2016. While the use of document-based macros for ransomware distribution remains relatively uncommon, a new family calling itself “Locky” has borrowed the technique from the eminently successful Dridex to maximize its target base. We first learned of Locky through Invincea and expanded on qualifying this threat with the help of PhishMe. Locky has also gained enough traction to find its way onto Dynamoo’s Blog and Reddit.

Created: 2026-02-23

Indicators

類似Pulses

Locky Ransomware Cybercriminals introduce New RockLoader Malware (score: 0.80)
RockLoader Malware (score: 0.76)
Locky invoice wave - 2016-02-18-A (score: 0.72)
CryptXXX: New Ransomware From the Actors Behind Reveton (score: 0.72)
From Locky with love – reading malicious attachments (score: 0.72)

このPulseに関連する脅威アクター (事実ベース)

INC Ransom

Score: 4.86

Matched TTPs:

T1657 - Financial Theft
T1486 - Data Encrypted for Impact

MITREへのリンク →

Contagious Interview

Score: 5.05

Matched TTPs:

T1657 - Financial Theft
T1566.003 - Spearphishing via Service

MITREへのリンク →

Kimsuky

Score: 5.27

Matched TTPs:

T1657 - Financial Theft
T1218.010 - Regsvr32

MITREへのリンク →

Storm-0501

Score: 7.61

Matched TTPs:

T1657 - Financial Theft
T1486 - Data Encrypted for Impact
T1218.010 - Regsvr32

MITREへのリンク →

Akira

Score: 4.86

Matched TTPs:

T1657 - Financial Theft
T1486 - Data Encrypted for Impact

MITREへのリンク →

Scattered Spider

Score: 9.40

Matched TTPs:

T1657 - Financial Theft
T1486 - Data Encrypted for Impact
T1538 - Cloud Service Dashboard

MITREへのリンク →

Medusa Group

Score: 9.40

Matched TTPs:

T1657 - Financial Theft
T1486 - Data Encrypted for Impact
T1650 - Acquire Access

MITREへのリンク →

Water Galura

Score: 4.86

Matched TTPs:

T1657 - Financial Theft
T1486 - Data Encrypted for Impact

MITREへのリンク →

Magic Hound

Score: 4.86

Matched TTPs:

T1486 - Data Encrypted for Impact
T1566.003 - Spearphishing via Service

MITREへのリンク →

Sandworm Team

Score: 3.83

Matched TTPs:

T1486 - Data Encrypted for Impact
T1203 - Exploitation for Client Execution

MITREへのリンク →

Storm-1811

Score: 4.86

Matched TTPs:

T1486 - Data Encrypted for Impact
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT41

Score: 3.83

Matched TTPs:

T1486 - Data Encrypted for Impact
T1203 - Exploitation for Client Execution

MITREへのリンク →

Moonstone Sleet

Score: 4.86

Matched TTPs:

T1486 - Data Encrypted for Impact
T1566.003 - Spearphishing via Service

MITREへのリンク →

Cobalt Group

Score: 4.24

Matched TTPs:

T1218.010 - Regsvr32
T1203 - Exploitation for Client Execution

MITREへのリンク →

Leviathan

Score: 4.24

Matched TTPs:

T1218.010 - Regsvr32
T1203 - Exploitation for Client Execution

MITREへのリンク →

Inception

Score: 7.39

Matched TTPs:

T1218.010 - Regsvr32
T1203 - Exploitation for Client Execution
T1221 - Template Injection

MITREへのリンク →

APT32

Score: 4.24

Matched TTPs:

T1218.010 - Regsvr32
T1203 - Exploitation for Client Execution

MITREへのリンク →

APT28

Score: 4.65

Matched TTPs:

T1203 - Exploitation for Client Execution
T1221 - Template Injection

MITREへのリンク →

Dragonfly

Score: 4.65

Matched TTPs:

T1203 - Exploitation for Client Execution
T1221 - Template Injection

MITREへのリンク →

EXOTIC LILY

Score: 4.02

Matched TTPs:

T1203 - Exploitation for Client Execution
T1566.003 - Spearphishing via Service

MITREへのリンク →

Lazarus Group

Score: 4.02

Matched TTPs:

T1203 - Exploitation for Client Execution
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT29

Score: 4.02

Matched TTPs:

T1203 - Exploitation for Client Execution
T1566.003 - Spearphishing via Service

MITREへのリンク →

Confucius

Score: 4.65

Matched TTPs:

T1203 - Exploitation for Client Execution
T1221 - Template Injection

MITREへのリンク →

Tropic Trooper

Score: 4.65

Matched TTPs:

T1203 - Exploitation for Client Execution
T1221 - Template Injection

MITREへのリンク →

OilRig

Score: 4.02

Matched TTPs:

T1203 - Exploitation for Client Execution
T1566.003 - Spearphishing via Service

MITREへのリンク →

Gamaredon Group

Score: 3.15

Matched TTPs:

T1221 - Template Injection

MITREへのリンク →

DarkHydrus

Score: 3.15

Matched TTPs:

T1221 - Template Injection

MITREへのリンク →

Equation

Score: 4.13

Matched TTPs:

T1564.005 - Hidden File System

MITREへのリンク →

Strider

Score: 4.13

Matched TTPs:

T1564.005 - Hidden File System

MITREへのリンク →

PLATINUM

Score: 4.54

Matched TTPs:

T1056.004 - Credential API Hooking

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Medusa Group

Score: 0.86

Matched TTPs:

T1657 - Financial Theft
T1486 - Data Encrypted for Impact
T1650 - Acquire Access

MITREへのリンク →

Scattered Spider

Score: 0.80

Matched TTPs:

T1657 - Financial Theft
T1486 - Data Encrypted for Impact
T1538 - Cloud Service Dashboard

MITREへのリンク →

Storm-0501

Score: 0.77

Matched TTPs:

T1218.010 - Regsvr32
T1657 - Financial Theft
T1486 - Data Encrypted for Impact

MITREへのリンク →

Inception

Score: 0.65

Matched TTPs:

T1218.010 - Regsvr32
T1203 - Exploitation for Client Execution
T1221 - Template Injection

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る