Trusted Design

Mobile Devices Used to Execute DNS Malware Against Home Routers

概要

Attacks against home routers have been going around for years—from malware that rigs routers to DNS rebinding attacks and backdoors, among others. Just last year one of our researchers reported a Domain Name System (DNS) changer malware that redirected users to malicious pages when they visited specific websites. This enabled cyber crooks to get hold of the victims’ online credentials, such as passwords and PINs Source : http://blog.trendmicro.com/trendlabs-security-intelligence/mobile-devices-used-to-execute-dns-malware-against-home-routers/

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

このPulseに関連する脅威アクター (事実ベース)

Mustang Panda

Score: 18.60
Matched TTPs:
  • T1557 - Adversary-in-the-Middle
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
  • T1583.006 - Web Services
  • T1027.007 - Dynamic API Resolution
  • T1564.001 - Hidden Files and Directories
MITREへのリンク →

Kimsuky

Score: 26.42
Matched TTPs:
  • T1557 - Adversary-in-the-Middle
  • T1594 - Search Victim-Owned Websites
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
  • T1036.004 - Masquerade Task or Service
  • T1583.006 - Web Services
  • T1102.001 - Dead Drop Resolver
  • T1584.001 - Domains
  • T1078.003 - Local Accounts
MITREへのリンク →

Sea Turtle

Score: 16.01
Matched TTPs:
  • T1557 - Adversary-in-the-Middle
  • T1583.002 - DNS Server
  • T1583.001 - Domains
  • T1584.002 - DNS Server
  • T1078.003 - Local Accounts
MITREへのリンク →

Volt Typhoon

Score: 21.50
Matched TTPs:
  • T1592 - Gather Victim Host Information
  • T1584.008 - Network Devices
  • T1594 - Search Victim-Owned Websites
  • T1584.005 - Botnet
  • T1590 - Gather Victim Network Information
  • T1124 - System Time Discovery
MITREへのリンク →

Ember Bear

Score: 6.88
Matched TTPs:
  • T1491.002 - External Defacement
  • T1071.004 - DNS
MITREへのリンク →

Sandworm Team

Score: 28.30
Matched TTPs:
  • T1491.002 - External Defacement
  • T1594 - Search Victim-Owned Websites
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
  • T1584.005 - Botnet
  • T1592.002 - Software
  • T1195.002 - Compromise Software Supply Chain
  • T1590.001 - Domain Properties
MITREへのリンク →

APT41

Score: 19.32
Matched TTPs:
  • T1568.002 - Domain Generation Algorithms
  • T1071.004 - DNS
  • T1036.004 - Masquerade Task or Service
  • T1195.002 - Compromise Software Supply Chain
  • T1595.003 - Wordlist Scanning
  • T1102.001 - Dead Drop Resolver
MITREへのリンク →

TA551

Score: 4.13
Matched TTPs:
  • T1568.002 - Domain Generation Algorithms
MITREへのリンク →

APT28

Score: 26.84
Matched TTPs:
  • T1584.008 - Network Devices
  • T1598.003 - Spearphishing Link
  • T1583.001 - Domains
  • T1583.006 - Web Services
  • T1189 - Drive-by Compromise
  • T1498 - Network Denial of Service
  • T1564.001 - Hidden Files and Directories
  • T1550.001 - Application Access Token
  • T1211 - Exploitation for Defense Evasion
MITREへのリンク →

ZIRCONIUM

Score: 14.30
Matched TTPs:
  • T1584.008 - Network Devices
  • T1598.003 - Spearphishing Link
  • T1583.001 - Domains
  • T1036.004 - Masquerade Task or Service
  • T1583.006 - Web Services
  • T1124 - System Time Discovery
MITREへのリンク →

Leviathan

Score: 6.90
Matched TTPs:
  • T1584.008 - Network Devices
  • T1583.001 - Domains
  • T1189 - Drive-by Compromise
MITREへのリンク →

Mustard Tempest

Score: 19.13
Matched TTPs:
  • T1583.008 - Malvertising
  • T1608.004 - Drive-by Target
  • T1608.001 - Upload Malware
  • T1189 - Drive-by Compromise
  • T1608.006 - SEO Poisoning
  • T1584.001 - Domains
MITREへのリンク →

Silent Librarian

Score: 7.26
Matched TTPs:
  • T1594 - Search Victim-Owned Websites
  • T1598.003 - Spearphishing Link
  • T1583.001 - Domains
MITREへのリンク →

EXOTIC LILY

Score: 6.78
Matched TTPs:
  • T1594 - Search Victim-Owned Websites
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
MITREへのリンク →

TA578

Score: 5.30
Matched TTPs:
  • T1594 - Search Victim-Owned Websites
  • T1583.006 - Web Services
MITREへのリンク →

Axiom

Score: 13.77
Matched TTPs:
  • T1583.002 - DNS Server
  • T1584.005 - Botnet
  • T1189 - Drive-by Compromise
  • T1001.002 - Steganography
MITREへのリンク →

HEXANE

Score: 7.34
Matched TTPs:
  • T1583.002 - DNS Server
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
MITREへのリンク →

Chimera

Score: 9.88
Matched TTPs:
  • T1071.004 - DNS
  • T1556.001 - Domain Controller Authentication
  • T1124 - System Time Discovery
MITREへのリンク →

LazyScripter

Score: 8.25
Matched TTPs:
  • T1071.004 - DNS
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
  • T1583.006 - Web Services
MITREへのリンク →

Cobalt Group

Score: 5.67
Matched TTPs:
  • T1071.004 - DNS
  • T1195.002 - Compromise Software Supply Chain
MITREへのリンク →

OilRig

Score: 14.40
Matched TTPs:
  • T1071.004 - DNS
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
  • T1137.004 - Outlook Home Page
  • T1555.004 - Windows Credential Manager
MITREへのリンク →

Ke3chang

Score: 6.59
Matched TTPs:
  • T1071.004 - DNS
  • T1583.005 - Botnet
MITREへのリンク →

Tropic Trooper

Score: 8.08
Matched TTPs:
  • T1071.004 - DNS
  • T1564.001 - Hidden Files and Directories
  • T1078.003 - Local Accounts
MITREへのリンク →

FIN7

Score: 24.23
Matched TTPs:
  • T1071.004 - DNS
  • T1608.004 - Drive-by Target
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
  • T1036.004 - Masquerade Task or Service
  • T1583.006 - Web Services
  • T1195.002 - Compromise Software Supply Chain
  • T1564.001 - Hidden Files and Directories
  • T1124 - System Time Discovery
  • T1078.003 - Local Accounts
MITREへのリンク →

Sidewinder

Score: 5.05
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1124 - System Time Discovery
MITREへのリンク →

Scattered Spider

Score: 8.51
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1583.001 - Domains
  • T1538 - Cloud Service Dashboard
MITREへのリンク →

APT32

Score: 20.19
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1608.004 - Drive-by Target
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
  • T1036.004 - Masquerade Task or Service
  • T1583.006 - Web Services
  • T1189 - Drive-by Compromise
  • T1564.001 - Hidden Files and Directories
  • T1078.003 - Local Accounts
MITREへのリンク →

Magic Hound

Score: 16.98
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1583.001 - Domains
  • T1036.004 - Masquerade Task or Service
  • T1583.006 - Web Services
  • T1592.002 - Software
  • T1189 - Drive-by Compromise
  • T1584.001 - Domains
MITREへのリンク →

Star Blizzard

Score: 5.95
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
MITREへのリンク →

Moonstone Sleet

Score: 8.88
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
  • T1195.002 - Compromise Software Supply Chain
MITREへのリンク →

CURIUM

Score: 14.99
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1608.004 - Drive-by Target
  • T1583.001 - Domains
  • T1584.006 - Web Services
  • T1189 - Drive-by Compromise
  • T1124 - System Time Discovery
MITREへのリンク →

Dragonfly

Score: 11.70
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1608.004 - Drive-by Target
  • T1583.001 - Domains
  • T1195.002 - Compromise Software Supply Chain
  • T1189 - Drive-by Compromise
MITREへのリンク →

Patchwork

Score: 7.51
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1189 - Drive-by Compromise
  • T1102.001 - Dead Drop Resolver
MITREへのリンク →

HAFNIUM

Score: 22.79
Matched TTPs:
  • T1583.005 - Botnet
  • T1584.005 - Botnet
  • T1583.006 - Web Services
  • T1590 - Gather Victim Network Information
  • T1564.001 - Hidden Files and Directories
  • T1550.001 - Application Access Token
  • T1078.003 - Local Accounts
MITREへのリンク →

APT5

Score: 3.84
Matched TTPs:
  • T1583.005 - Botnet
MITREへのリンク →

Transparent Tribe

Score: 15.55
Matched TTPs:
  • T1608.004 - Drive-by Target
  • T1583.001 - Domains
  • T1568 - Dynamic Resolution
  • T1189 - Drive-by Compromise
  • T1564.001 - Hidden Files and Directories
  • T1584.001 - Domains
MITREへのリンク →

LuminousMoth

Score: 7.67
Matched TTPs:
  • T1608.004 - Drive-by Target
  • T1608.001 - Upload Malware
  • T1564.001 - Hidden Files and Directories
MITREへのリンク →

Threat Group-3390

Score: 11.22
Matched TTPs:
  • T1608.004 - Drive-by Target
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
  • T1195.002 - Compromise Software Supply Chain
  • T1189 - Drive-by Compromise
MITREへのリンク →

TA2541

Score: 8.79
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
  • T1568 - Dynamic Resolution
  • T1583.006 - Web Services
MITREへのリンク →

Earth Lusca

Score: 10.89
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
  • T1583.006 - Web Services
  • T1584.006 - Web Services
  • T1189 - Drive-by Compromise
MITREへのリンク →

TeamTNT

Score: 3.49
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
MITREへのリンク →

Gamaredon Group

Score: 8.79
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
  • T1568 - Dynamic Resolution
  • T1583.006 - Web Services
MITREへのリンク →

SideCopy

Score: 5.26
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1584.001 - Domains
MITREへのリンク →

TA505

Score: 3.49
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
MITREへのリンク →

BITTER

Score: 8.87
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
  • T1568 - Dynamic Resolution
  • T1036.004 - Masquerade Task or Service
MITREへのリンク →

Saint Bear

Score: 3.99
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1583.006 - Web Services
MITREへのリンク →

Contagious Interview

Score: 5.50
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
  • T1583.006 - Web Services
MITREへのリンク →

APT42

Score: 3.49
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1583.001 - Domains
MITREへのリンク →

APT1

Score: 4.80
Matched TTPs:
  • T1583.001 - Domains
  • T1584.001 - Domains
MITREへのリンク →

IndigoZebra

Score: 3.53
Matched TTPs:
  • T1583.001 - Domains
  • T1583.006 - Web Services
MITREへのリンク →

RedEcho

Score: 4.80
Matched TTPs:
  • T1583.001 - Domains
  • T1568 - Dynamic Resolution
MITREへのリンク →

Lazarus Group

Score: 20.40
Matched TTPs:
  • T1583.001 - Domains
  • T1036.004 - Masquerade Task or Service
  • T1583.006 - Web Services
  • T1189 - Drive-by Compromise
  • T1027.007 - Dynamic API Resolution
  • T1564.001 - Hidden Files and Directories
  • T1124 - System Time Discovery
  • T1529 - System Shutdown/Reboot
MITREへのリンク →

APT38

Score: 6.90
Matched TTPs:
  • T1583.001 - Domains
  • T1189 - Drive-by Compromise
  • T1529 - System Shutdown/Reboot
MITREへのリンク →

Winter Vivern

Score: 13.54
Matched TTPs:
  • T1583.001 - Domains
  • T1056.003 - Web Portal Capture
  • T1036.004 - Masquerade Task or Service
  • T1584.006 - Web Services
  • T1189 - Drive-by Compromise
MITREへのリンク →

MoustachedBouncer

Score: 4.54
Matched TTPs:
  • T1659 - Content Injection
MITREへのリンク →

APT29

Score: 17.04
Matched TTPs:
  • T1568 - Dynamic Resolution
  • T1583.006 - Web Services
  • T1090.004 - Domain Fronting
  • T1651 - Cloud Administration Command
  • T1078.003 - Local Accounts
MITREへのリンク →

FIN13

Score: 4.76
Matched TTPs:
  • T1036.004 - Masquerade Task or Service
  • T1564.001 - Hidden Files and Directories
MITREへのリンク →

Wizard Spider

Score: 5.72
Matched TTPs:
  • T1036.004 - Masquerade Task or Service
  • T1555.004 - Windows Credential Manager
MITREへのリンク →

PROMETHIUM

Score: 6.53
Matched TTPs:
  • T1036.004 - Masquerade Task or Service
  • T1189 - Drive-by Compromise
  • T1078.003 - Local Accounts
MITREへのリンク →

UNC3886

Score: 4.69
Matched TTPs:
  • T1036.004 - Masquerade Task or Service
  • T1124 - System Time Discovery
MITREへのリンク →

Higaisa

Score: 4.69
Matched TTPs:
  • T1036.004 - Masquerade Task or Service
  • T1124 - System Time Discovery
MITREへのリンク →

Medusa Group

Score: 10.17
Matched TTPs:
  • T1583.006 - Web Services
  • T1529 - System Shutdown/Reboot
  • T1218.014 - MMC
MITREへのリンク →

Turla

Score: 16.28
Matched TTPs:
  • T1583.006 - Web Services
  • T1584.006 - Web Services
  • T1555.004 - Windows Credential Manager
  • T1189 - Drive-by Compromise
  • T1124 - System Time Discovery
  • T1078.003 - Local Accounts
MITREへのリンク →

Indrik Spider

Score: 3.84
Matched TTPs:
  • T1590 - Gather Victim Network Information
MITREへのリンク →

Andariel

Score: 5.61
Matched TTPs:
  • T1592.002 - Software
  • T1189 - Drive-by Compromise
MITREへのリンク →

Daggerfly

Score: 4.69
Matched TTPs:
  • T1195.002 - Compromise Software Supply Chain
  • T1189 - Drive-by Compromise
MITREへのリンク →

Volatile Cedar

Score: 4.13
Matched TTPs:
  • T1595.003 - Wordlist Scanning
MITREへのリンク →

LAPSUS$

Score: 4.13
Matched TTPs:
  • T1584.002 - DNS Server
MITREへのリンク →

Stealth Falcon

Score: 3.62
Matched TTPs:
  • T1555.004 - Windows Credential Manager
MITREへのリンク →

RTM

Score: 5.05
Matched TTPs:
  • T1189 - Drive-by Compromise
  • T1102.001 - Dead Drop Resolver
MITREへのリンク →

Darkhotel

Score: 4.36
Matched TTPs:
  • T1189 - Drive-by Compromise
  • T1124 - System Time Discovery
MITREへのリンク →

BRONZE BUTLER

Score: 7.64
Matched TTPs:
  • T1189 - Drive-by Compromise
  • T1124 - System Time Discovery
  • T1102.001 - Dead Drop Resolver
MITREへのリンク →

APT37

Score: 5.39
Matched TTPs:
  • T1189 - Drive-by Compromise
  • T1529 - System Shutdown/Reboot
MITREへのリンク →

Equation

Score: 4.13
Matched TTPs:
  • T1564.005 - Hidden File System
MITREへのリンク →

Strider

Score: 4.13
Matched TTPs:
  • T1564.005 - Hidden File System
MITREへのリンク →

Rocke

Score: 5.95
Matched TTPs:
  • T1564.001 - Hidden Files and Directories
  • T1102.001 - Dead Drop Resolver
MITREへのリンク →

Velvet Ant

Score: 6.80
Matched TTPs:
  • T1078.003 - Local Accounts
  • T1211 - Exploitation for Defense Evasion
MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Sandworm Team

Score: 0.78
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1195.002 - Compromise Software Supply Chain
  • T1598.003 - Spearphishing Link
  • T1590.001 - Domain Properties
  • T1491.002 - External Defacement
  • T1584.005 - Botnet
  • T1592.002 - Software
  • T1594 - Search Victim-Owned Websites
  • T1583.001 - Domains
MITREへのリンク →

APT28

Score: 0.76
Matched TTPs:
  • T1211 - Exploitation for Defense Evasion
  • T1550.001 - Application Access Token
  • T1189 - Drive-by Compromise
  • T1583.006 - Web Services
  • T1598.003 - Spearphishing Link
  • T1564.001 - Hidden Files and Directories
  • T1498 - Network Denial of Service
  • T1584.008 - Network Devices
  • T1583.001 - Domains
MITREへのリンク →

FIN7

Score: 0.74
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1608.004 - Drive-by Target
  • T1195.002 - Compromise Software Supply Chain
  • T1583.006 - Web Services
  • T1078.003 - Local Accounts
  • T1071.004 - DNS
  • T1564.001 - Hidden Files and Directories
  • T1124 - System Time Discovery
  • T1036.004 - Masquerade Task or Service
  • T1583.001 - Domains
MITREへのリンク →

Kimsuky

Score: 0.74
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1102.001 - Dead Drop Resolver
  • T1583.006 - Web Services
  • T1078.003 - Local Accounts
  • T1598.003 - Spearphishing Link
  • T1584.001 - Domains
  • T1557 - Adversary-in-the-Middle
  • T1036.004 - Masquerade Task or Service
  • T1594 - Search Victim-Owned Websites
  • T1583.001 - Domains
MITREへのリンク →

HAFNIUM

Score: 0.66
Matched TTPs:
  • T1550.001 - Application Access Token
  • T1583.006 - Web Services
  • T1590 - Gather Victim Network Information
  • T1078.003 - Local Accounts
  • T1583.005 - Botnet
  • T1564.001 - Hidden Files and Directories
  • T1584.005 - Botnet
MITREへのリンク →

Volt Typhoon

Score: 0.63
Matched TTPs:
  • T1590 - Gather Victim Network Information
  • T1592 - Gather Victim Host Information
  • T1584.008 - Network Devices
  • T1124 - System Time Discovery
  • T1594 - Search Victim-Owned Websites
  • T1584.005 - Botnet
MITREへのリンク →

APT32

Score: 0.59
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1608.004 - Drive-by Target
  • T1189 - Drive-by Compromise
  • T1583.006 - Web Services
  • T1078.003 - Local Accounts
  • T1598.003 - Spearphishing Link
  • T1564.001 - Hidden Files and Directories
  • T1036.004 - Masquerade Task or Service
  • T1583.001 - Domains
MITREへのリンク →

Lazarus Group

Score: 0.59
Matched TTPs:
  • T1189 - Drive-by Compromise
  • T1583.006 - Web Services
  • T1564.001 - Hidden Files and Directories
  • T1027.007 - Dynamic API Resolution
  • T1529 - System Shutdown/Reboot
  • T1124 - System Time Discovery
  • T1036.004 - Masquerade Task or Service
  • T1583.001 - Domains
MITREへのリンク →

Mustard Tempest

Score: 0.59
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1189 - Drive-by Compromise
  • T1583.008 - Malvertising
  • T1608.006 - SEO Poisoning
  • T1584.001 - Domains
  • T1608.004 - Drive-by Target
MITREへのリンク →

APT41

Score: 0.59
Matched TTPs:
  • T1102.001 - Dead Drop Resolver
  • T1568.002 - Domain Generation Algorithms
  • T1195.002 - Compromise Software Supply Chain
  • T1071.004 - DNS
  • T1595.003 - Wordlist Scanning
  • T1036.004 - Masquerade Task or Service
MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

← Pulse一覧に戻る