Trusted Design

Large malvertising campaign hits popular Dutch websites

概要

On Sunday April 10th the Fox-IT Security Operations Center (SOC) started to see an increase of exploit kit related incidents. The incidents originated from a large malvertising campaign hitting the Netherlands. The list of affected websites spreads across most of the popular Dutch websites. In total we’ve now seen at least 288 websites being affected.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

A VAST Malvertising Attack (score: 0.72)
WordPress Compromise Campaign (score: 0.67)
Large Malvertising Campaign Leads to Angler EK & Bunitu Malware (score: 0.66)
Compromised WordPress sites redirect visitors to Nuclear EK (score: 0.64)
Large Malvertising Campaign Goes (Almost) Undetected (score: 0.62)

このPulseに関連する脅威アクター (事実ベース)

Kimsuky

Score: 38.55

Matched TTPs:

T1583 - Acquire Infrastructure
T1594 - Search Victim-Owned Websites
T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1593.002 - Search Engines
T1583.006 - Web Services
T1591 - Gather Victim Org Information
T1593 - Search Open Websites/Domains
T1593.001 - Social Media
T1102.002 - Bidirectional Communication
T1680 - Local Storage Discovery
T1588.005 - Exploits

MITREへのリンク →

Sea Turtle

Score: 6.00

Matched TTPs:

T1583 - Acquire Infrastructure
T1190 - Exploit Public-Facing Application
T1203 - Exploitation for Client Execution

MITREへのリンク →

Ember Bear

Score: 24.83

Matched TTPs:

T1583 - Acquire Infrastructure
T1491.002 - External Defacement
T1195 - Supply Chain Compromise
T1190 - Exploit Public-Facing Application
T1595.002 - Vulnerability Scanning
T1203 - Exploitation for Client Execution
T1595.001 - Scanning IP Blocks
T1588.005 - Exploits

MITREへのリンク →

Indrik Spider

Score: 6.88

Matched TTPs:

T1583 - Acquire Infrastructure
T1590 - Gather Victim Network Information

MITREへのリンク →

Agrius

Score: 4.50

Matched TTPs:

T1583 - Acquire Infrastructure
T1190 - Exploit Public-Facing Application

MITREへのリンク →

Contagious Interview

Score: 18.28

Matched TTPs:

T1583 - Acquire Infrastructure
T1608.001 - Upload Malware
T1681 - Search Threat Vendor Data
T1583.006 - Web Services
T1593 - Search Open Websites/Domains
T1593.001 - Social Media

MITREへのリンク →

Sandworm Team

Score: 37.66

Matched TTPs:

T1583 - Acquire Infrastructure
T1491.002 - External Defacement
T1594 - Search Victim-Owned Websites
T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1195 - Supply Chain Compromise
T1190 - Exploit Public-Facing Application
T1595.002 - Vulnerability Scanning
T1591.002 - Business Relationships
T1593 - Search Open Websites/Domains
T1592.002 - Software
T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution

MITREへのリンク →

Star Blizzard

Score: 10.75

Matched TTPs:

T1583 - Acquire Infrastructure
T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1593 - Search Open Websites/Domains

MITREへのリンク →

Volt Typhoon

Score: 30.52

Matched TTPs:

T1592 - Gather Victim Host Information
T1594 - Search Victim-Owned Websites
T1590.004 - Network Topology
T1190 - Exploit Public-Facing Application
T1591 - Gather Victim Org Information
T1590 - Gather Victim Network Information
T1593 - Search Open Websites/Domains
T1596.005 - Scan Databases
T1680 - Local Storage Discovery

MITREへのリンク →

Silent Librarian

Score: 5.74

Matched TTPs:

T1594 - Search Victim-Owned Websites
T1598.003 - Spearphishing Link

MITREへのリンク →

EXOTIC LILY

Score: 15.13

Matched TTPs:

T1594 - Search Victim-Owned Websites
T1608.001 - Upload Malware
T1597 - Search Closed Sources
T1593.001 - Social Media
T1203 - Exploitation for Client Execution

MITREへのリンク →

TA578

Score: 5.30

Matched TTPs:

T1594 - Search Victim-Owned Websites
T1583.006 - Web Services

MITREへのリンク →

Sidewinder

Score: 3.95

Matched TTPs:

T1598.003 - Spearphishing Link
T1203 - Exploitation for Client Execution

MITREへのリンク →

Mustang Panda

Score: 11.22

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1583.006 - Web Services
T1593 - Search Open Websites/Domains
T1203 - Exploitation for Client Execution

MITREへのリンク →

ZIRCONIUM

Score: 6.87

Matched TTPs:

T1598.003 - Spearphishing Link
T1583.006 - Web Services
T1102.002 - Bidirectional Communication

MITREへのリンク →

APT32

Score: 12.74

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.004 - Drive-by Target
T1608.001 - Upload Malware
T1583.006 - Web Services
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Magic Hound

Score: 16.54

Matched TTPs:

T1598.003 - Spearphishing Link
T1190 - Exploit Public-Facing Application
T1595.002 - Vulnerability Scanning
T1583.006 - Web Services
T1592.002 - Software
T1102.002 - Bidirectional Communication
T1189 - Drive-by Compromise

MITREへのリンク →

APT28

Score: 21.61

Matched TTPs:

T1598.003 - Spearphishing Link
T1190 - Exploit Public-Facing Application
T1595.002 - Vulnerability Scanning
T1583.006 - Web Services
T1591 - Gather Victim Org Information
T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1211 - Exploitation for Defense Evasion

MITREへのリンク →

Moonstone Sleet

Score: 7.72

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1591 - Gather Victim Org Information

MITREへのリンク →

CURIUM

Score: 10.88

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.004 - Drive-by Target
T1584.006 - Web Services
T1189 - Drive-by Compromise

MITREへのリンク →

Dragonfly

Score: 16.66

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.004 - Drive-by Target
T1190 - Exploit Public-Facing Application
T1595.002 - Vulnerability Scanning
T1591.002 - Business Relationships
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Patchwork

Score: 8.55

Matched TTPs:

T1598.003 - Spearphishing Link
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1680 - Local Storage Discovery

MITREへのリンク →

Transparent Tribe

Score: 6.29

Matched TTPs:

T1608.004 - Drive-by Target
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

LuminousMoth

Score: 5.01

Matched TTPs:

T1608.004 - Drive-by Target
T1608.001 - Upload Malware

MITREへのリンク →

FIN7

Score: 14.17

Matched TTPs:

T1608.004 - Drive-by Target
T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1583.006 - Web Services
T1591 - Gather Victim Org Information
T1102.002 - Bidirectional Communication

MITREへのリンク →

Threat Group-3390

Score: 9.74

Matched TTPs:

T1608.004 - Drive-by Target
T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Mustard Tempest

Score: 6.77

Matched TTPs:

T1608.004 - Drive-by Target
T1608.001 - Upload Malware
T1189 - Drive-by Compromise

MITREへのリンク →

Salt Typhoon

Score: 5.31

Matched TTPs:

T1590.004 - Network Topology
T1190 - Exploit Public-Facing Application

MITREへのリンク →

FIN13

Score: 5.31

Matched TTPs:

T1590.004 - Network Topology
T1190 - Exploit Public-Facing Application

MITREへのリンク →

TA2541

Score: 3.99

Matched TTPs:

T1608.001 - Upload Malware
T1583.006 - Web Services

MITREへのリンク →

Earth Lusca

Score: 13.43

Matched TTPs:

T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1595.002 - Vulnerability Scanning
T1583.006 - Web Services
T1584.006 - Web Services
T1189 - Drive-by Compromise

MITREへのリンク →

OilRig

Score: 7.31

Matched TTPs:

T1608.001 - Upload Malware
T1195 - Supply Chain Compromise
T1203 - Exploitation for Client Execution

MITREへのリンク →

TeamTNT

Score: 11.53

Matched TTPs:

T1608.001 - Upload Malware
T1595.002 - Vulnerability Scanning
T1595.001 - Scanning IP Blocks
T1680 - Local Storage Discovery

MITREへのリンク →

LazyScripter

Score: 3.99

Matched TTPs:

T1608.001 - Upload Malware
T1583.006 - Web Services

MITREへのリンク →

Gamaredon Group

Score: 6.38

Matched TTPs:

T1608.001 - Upload Malware
T1583.006 - Web Services
T1102.002 - Bidirectional Communication

MITREへのリンク →

BlackByte

Score: 3.44

Matched TTPs:

T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application

MITREへのリンク →

BITTER

Score: 3.47

Matched TTPs:

T1608.001 - Upload Malware
T1203 - Exploitation for Client Execution

MITREへのリンク →

HEXANE

Score: 4.37

Matched TTPs:

T1608.001 - Upload Malware
T1102.002 - Bidirectional Communication

MITREへのリンク →

Saint Bear

Score: 5.48

Matched TTPs:

T1608.001 - Upload Malware
T1583.006 - Web Services
T1203 - Exploitation for Client Execution

MITREへのリンク →

Medusa Group

Score: 3.48

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1583.006 - Web Services

MITREへのリンク →

ToddyCat

Score: 4.30

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1680 - Local Storage Discovery

MITREへのリンク →

Winter Vivern

Score: 9.45

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1595.002 - Vulnerability Scanning
T1584.006 - Web Services
T1189 - Drive-by Compromise

MITREへのリンク →

APT29

Score: 7.57

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1595.002 - Vulnerability Scanning
T1583.006 - Web Services
T1203 - Exploitation for Client Execution

MITREへのリンク →

Leviathan

Score: 7.32

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1595.002 - Vulnerability Scanning
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Volatile Cedar

Score: 8.19

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1595.002 - Vulnerability Scanning
T1595.003 - Wordlist Scanning

MITREへのリンク →

UNC3886

Score: 7.10

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1681 - Search Threat Vendor Data
T1203 - Exploitation for Client Execution

MITREへのリンク →

Axiom

Score: 4.73

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

APT41

Score: 13.82

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1595.002 - Vulnerability Scanning
T1203 - Exploitation for Client Execution
T1595.003 - Wordlist Scanning
T1596.005 - Scan Databases

MITREへのリンク →

HAFNIUM

Score: 11.86

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1592.004 - Client Configurations
T1583.006 - Web Services
T1590 - Gather Victim Network Information

MITREへのリンク →

MuddyWater

Score: 7.37

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1583.006 - Web Services
T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution

MITREへのリンク →

APT39

Score: 3.87

Matched TTPs:

T1190 - Exploit Public-Facing Application
T1102.002 - Bidirectional Communication

MITREへのリンク →

MoustachedBouncer

Score: 4.54

Matched TTPs:

T1659 - Content Injection

MITREへのリンク →

LAPSUS$

Score: 3.84

Matched TTPs:

T1591.002 - Business Relationships

MITREへのリンク →

Turla

Score: 9.80

Matched TTPs:

T1583.006 - Web Services
T1584.006 - Web Services
T1102.002 - Bidirectional Communication
T1189 - Drive-by Compromise

MITREへのリンク →

Lazarus Group

Score: 13.79

Matched TTPs:

T1583.006 - Web Services
T1591 - Gather Victim Org Information
T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1680 - Local Storage Discovery

MITREへのリンク →

Confucius

Score: 6.34

Matched TTPs:

T1583.006 - Web Services
T1203 - Exploitation for Client Execution
T1680 - Local Storage Discovery

MITREへのリンク →

POLONIUM

Score: 4.41

Matched TTPs:

T1583.006 - Web Services
T1102.002 - Bidirectional Communication

MITREへのリンク →

Andariel

Score: 7.10

Matched TTPs:

T1592.002 - Software
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

APT37

Score: 5.66

Matched TTPs:

T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

APT12

Score: 3.89

Matched TTPs:

T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution

MITREへのリンク →

Higaisa

Score: 4.33

Matched TTPs:

T1203 - Exploitation for Client Execution
T1680 - Local Storage Discovery

MITREへのリンク →

BRONZE BUTLER

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Tropic Trooper

Score: 4.33

Matched TTPs:

T1203 - Exploitation for Client Execution
T1680 - Local Storage Discovery

MITREへのリンク →

Elderwood

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Darkhotel

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Equation

Score: 4.13

Matched TTPs:

T1564.005 - Hidden File System

MITREへのリンク →

Strider

Score: 4.13

Matched TTPs:

T1564.005 - Hidden File System

MITREへのリンク →

Velvet Ant

Score: 4.13

Matched TTPs:

T1211 - Exploitation for Defense Evasion

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Kimsuky

Score: 0.82

Matched TTPs:

T1594 - Search Victim-Owned Websites
T1102.002 - Bidirectional Communication
T1593 - Search Open Websites/Domains
T1591 - Gather Victim Org Information
T1593.002 - Search Engines
T1583.006 - Web Services
T1190 - Exploit Public-Facing Application
T1608.001 - Upload Malware
T1598.003 - Spearphishing Link
T1583 - Acquire Infrastructure
T1680 - Local Storage Discovery
T1588.005 - Exploits
T1593.001 - Social Media

MITREへのリンク →

Sandworm Team

Score: 0.81

Matched TTPs:

T1594 - Search Victim-Owned Websites
T1592.002 - Software
T1195 - Supply Chain Compromise
T1102.002 - Bidirectional Communication
T1203 - Exploitation for Client Execution
T1593 - Search Open Websites/Domains
T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1190 - Exploit Public-Facing Application
T1491.002 - External Defacement
T1583 - Acquire Infrastructure
T1591.002 - Business Relationships
T1595.002 - Vulnerability Scanning

MITREへのリンク →

Volt Typhoon

Score: 0.66

Matched TTPs:

T1594 - Search Victim-Owned Websites
T1590.004 - Network Topology
T1596.005 - Scan Databases
T1593 - Search Open Websites/Domains
T1591 - Gather Victim Org Information
T1190 - Exploit Public-Facing Application
T1680 - Local Storage Discovery
T1592 - Gather Victim Host Information
T1590 - Gather Victim Network Information

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る