Trusted Design

20160229: A Phishing Website on Wells Fargo Bank

概要

This phishing website has Wells Fargo customers as its main target. It has about 80% similarity when compared with the main Wells Fargo website. At the Phishing Infrastructure analysis stage, some details from VirusTotal shows that the Domain Name: CIAGIA.COM was created on October 4th 2014, with an expiration date of October 4th, 2016. It is hosted by www.godaddy.com and was updated on April 21st, 2015. Other information from VirusTotal include name of registered organization under and the website administrator. It has a rating of 10/67; ten out of sixty –seven security companies have rated it as phishing site. This site maybe adversary subverted.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

20160301: BankofAmerica Phishing 3479763 (score: 0.67)
Phishing malware - Standard Bank SA (score: 0.62)
New Spear Phishing Campaign Pretends to be EFF (score: 0.60)
THL: Phishing Sites and PHP Kits - February 2016 - Part 1 (score: 0.60)
THL: Phishing sites and PHP kits - December 2015 - Part 1 (score: 0.59)

このPulseに関連する脅威アクター (事実ベース)

Ember Bear

Score: 4.13

Matched TTPs:

T1491.002 - External Defacement

MITREへのリンク →

Sandworm Team

Score: 6.59

Matched TTPs:

T1491.002 - External Defacement
T1598.003 - Spearphishing Link

MITREへのリンク →

Scattered Spider

Score: 16.65

Matched TTPs:

T1598.003 - Spearphishing Link
T1217 - Browser Information Discovery
T1074 - Data Staged
T1598 - Phishing for Information
T1136 - Create Account

MITREへのリンク →

Mustang Panda

Score: 13.14

Matched TTPs:

T1598.003 - Spearphishing Link
T1583.006 - Web Services
T1678 - Delay Execution
T1027.007 - Dynamic API Resolution

MITREへのリンク →

ZIRCONIUM

Score: 10.01

Matched TTPs:

T1598.003 - Spearphishing Link
T1036.004 - Masquerade Task or Service
T1583.006 - Web Services
T1598 - Phishing for Information

MITREへのリンク →

APT32

Score: 8.33

Matched TTPs:

T1598.003 - Spearphishing Link
T1036.004 - Masquerade Task or Service
T1583.006 - Web Services
T1189 - Drive-by Compromise

MITREへのリンク →

Kimsuky

Score: 23.71

Matched TTPs:

T1598.003 - Spearphishing Link
T1036.004 - Masquerade Task or Service
T1583.006 - Web Services
T1566 - Phishing
T1598 - Phishing for Information
T1587 - Develop Capabilities
T1102.001 - Dead Drop Resolver
T1584.001 - Domains

MITREへのリンク →

Magic Hound

Score: 14.14

Matched TTPs:

T1598.003 - Spearphishing Link
T1036.004 - Masquerade Task or Service
T1583.006 - Web Services
T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service
T1584.001 - Domains

MITREへのリンク →

APT28

Score: 13.81

Matched TTPs:

T1598.003 - Spearphishing Link
T1583.006 - Web Services
T1598 - Phishing for Information
T1189 - Drive-by Compromise
T1211 - Exploitation for Defense Evasion

MITREへのリンク →

Moonstone Sleet

Score: 15.55

Matched TTPs:

T1598.003 - Spearphishing Link
T1217 - Browser Information Discovery
T1598 - Phishing for Information
T1587 - Develop Capabilities
T1566.003 - Spearphishing via Service

MITREへのリンク →

CURIUM

Score: 10.37

Matched TTPs:

T1598.003 - Spearphishing Link
T1584.006 - Web Services
T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

Dragonfly

Score: 4.22

Matched TTPs:

T1598.003 - Spearphishing Link
T1189 - Drive-by Compromise

MITREへのリンク →

Patchwork

Score: 7.51

Matched TTPs:

T1598.003 - Spearphishing Link
T1189 - Drive-by Compromise
T1102.001 - Dead Drop Resolver

MITREへのリンク →

Fox Kitten

Score: 5.38

Matched TTPs:

T1217 - Browser Information Discovery
T1036.004 - Masquerade Task or Service

MITREへのリンク →

Volt Typhoon

Score: 6.91

Matched TTPs:

T1217 - Browser Information Discovery
T1074 - Data Staged

MITREへのリンク →

APT38

Score: 5.05

Matched TTPs:

T1217 - Browser Information Discovery
T1189 - Drive-by Compromise

MITREへのリンク →

Chimera

Score: 3.29

Matched TTPs:

T1217 - Browser Information Discovery

MITREへのリンク →

FIN7

Score: 4.11

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1583.006 - Web Services

MITREへのリンク →

Winter Vivern

Score: 7.48

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1584.006 - Web Services
T1189 - Drive-by Compromise

MITREへのリンク →

Wizard Spider

Score: 5.72

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1074 - Data Staged

MITREへのリンク →

FIN6

Score: 4.62

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1566.003 - Spearphishing via Service

MITREへのリンク →

PROMETHIUM

Score: 3.86

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1189 - Drive-by Compromise

MITREへのリンク →

Lazarus Group

Score: 12.53

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1583.006 - Web Services
T1189 - Drive-by Compromise
T1027.007 - Dynamic API Resolution
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT41

Score: 5.38

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1102.001 - Dead Drop Resolver

MITREへのリンク →

INC Ransom

Score: 6.91

Matched TTPs:

T1074 - Data Staged
T1566 - Phishing

MITREへのリンク →

Earth Lusca

Score: 7.40

Matched TTPs:

T1583.006 - Web Services
T1584.006 - Web Services
T1189 - Drive-by Compromise

MITREへのリンク →

Contagious Interview

Score: 8.38

Matched TTPs:

T1583.006 - Web Services
T1587 - Develop Capabilities
T1566.003 - Spearphishing via Service

MITREへのリンク →

Turla

Score: 7.40

Matched TTPs:

T1583.006 - Web Services
T1584.006 - Web Services
T1189 - Drive-by Compromise

MITREへのリンク →

APT29

Score: 9.07

Matched TTPs:

T1583.006 - Web Services
T1090.004 - Domain Fronting
T1566.003 - Spearphishing via Service

MITREへのリンク →

Sea Turtle

Score: 3.29

Matched TTPs:

T1566 - Phishing

MITREへのリンク →

Axiom

Score: 5.05

Matched TTPs:

T1566 - Phishing
T1189 - Drive-by Compromise

MITREへのリンク →

AppleJeus

Score: 3.29

Matched TTPs:

T1566 - Phishing

MITREへのリンク →

GOLD SOUTHFIELD

Score: 3.29

Matched TTPs:

T1566 - Phishing

MITREへのリンク →

Transparent Tribe

Score: 5.05

Matched TTPs:

T1189 - Drive-by Compromise
T1584.001 - Domains

MITREへのリンク →

RTM

Score: 5.05

Matched TTPs:

T1189 - Drive-by Compromise
T1102.001 - Dead Drop Resolver

MITREへのリンク →

Windshift

Score: 4.29

Matched TTPs:

T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

Dark Caracal

Score: 4.29

Matched TTPs:

T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

BRONZE BUTLER

Score: 5.05

Matched TTPs:

T1189 - Drive-by Compromise
T1102.001 - Dead Drop Resolver

MITREへのリンク →

Mustard Tempest

Score: 5.05

Matched TTPs:

T1189 - Drive-by Compromise
T1584.001 - Domains

MITREへのリンク →

Equation

Score: 4.13

Matched TTPs:

T1564.005 - Hidden File System

MITREへのリンク →

Strider

Score: 4.13

Matched TTPs:

T1564.005 - Hidden File System

MITREへのリンク →

Indrik Spider

Score: 3.84

Matched TTPs:

T1136 - Create Account

MITREへのリンク →

Salt Typhoon

Score: 3.84

Matched TTPs:

T1136 - Create Account

MITREへのリンク →

Rocke

Score: 3.29

Matched TTPs:

T1102.001 - Dead Drop Resolver

MITREへのリンク →

SideCopy

Score: 3.29

Matched TTPs:

T1584.001 - Domains

MITREへのリンク →

APT1

Score: 3.29

Matched TTPs:

T1584.001 - Domains

MITREへのリンク →

Velvet Ant

Score: 4.13

Matched TTPs:

T1211 - Exploitation for Defense Evasion

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Kimsuky

Score: 0.78

Matched TTPs:

T1598.003 - Spearphishing Link
T1566 - Phishing
T1036.004 - Masquerade Task or Service
T1587 - Develop Capabilities
T1102.001 - Dead Drop Resolver
T1583.006 - Web Services
T1584.001 - Domains
T1598 - Phishing for Information

MITREへのリンク →

Scattered Spider

Score: 0.58

Matched TTPs:

T1598.003 - Spearphishing Link
T1136 - Create Account
T1074 - Data Staged
T1217 - Browser Information Discovery
T1598 - Phishing for Information

MITREへのリンク →

Moonstone Sleet

Score: 0.56

Matched TTPs:

T1598.003 - Spearphishing Link
T1587 - Develop Capabilities
T1566.003 - Spearphishing via Service
T1217 - Browser Information Discovery
T1598 - Phishing for Information

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る