Trusted Design

Infy Malware Active In Decade of Targeted Attacks

概要

In May 2015, Palo Alto Networks WildFire detected two e-mails carrying malicious documents from a genuine and compromised Israeli Gmail account, sent to an Israeli industrial organization. One e-mail carried a Microsoft PowerPoint file named “thanks.pps” (VirusTotal), the other a Microsoft Word document named “request.docx”. Around the same time, WildFire also captured an e-mail containing a Word document (“hello.docx”) with an identical hash as the earlier Word document, this time sent to a U.S. Government recipient.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

Enterprises Hit by BARTALEX Macro Malware (score: 0.67)
Microsoft Word Intruder: Operation Pony Express (score: 0.66)
Attack on Critical Infrastructure Leverages Template Injection (score: 0.65)
NCCIC / US-CERT: Malware Initial Findings Report (MIFR) - 10128830 (score: 0.65)
Word document malware emailed with spoofing (score: 0.65)

このPulseに関連する脅威アクター (事実ベース)

Ember Bear

Score: 6.88

Matched TTPs:

T1491.002 - External Defacement
T1550.002 - Pass the Hash

MITREへのリンク →

Sandworm Team

Score: 16.48

Matched TTPs:

T1491.002 - External Defacement
T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1102.002 - Bidirectional Communication
T1584.004 - Server
T1003.003 - NTDS

MITREへのリンク →

MuddyWater

Score: 4.72

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1102.002 - Bidirectional Communication

MITREへのリンク →

Confucius

Score: 5.47

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1221 - Template Injection

MITREへのリンク →

Mofang

Score: 5.47

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1027.015 - Compression

MITREへのリンク →

Kimsuky

Score: 18.05

Matched TTPs:

T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1566 - Phishing
T1218.010 - Regsvr32
T1102.002 - Bidirectional Communication
T1550.002 - Pass the Hash

MITREへのリンク →

Sidewinder

Score: 10.99

Matched TTPs:

T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1598.002 - Spearphishing Attachment
T1124 - System Time Discovery

MITREへのリンク →

FIN7

Score: 9.41

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1102.002 - Bidirectional Communication
T1124 - System Time Discovery

MITREへのリンク →

Mustang Panda

Score: 11.25

Matched TTPs:

T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1027.007 - Dynamic API Resolution
T1003.003 - NTDS

MITREへのリンク →

APT32

Score: 12.37

Matched TTPs:

T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1218.010 - Regsvr32
T1550.002 - Pass the Hash

MITREへのリンク →

APT3

Score: 8.22

Matched TTPs:

T1566.002 - Spearphishing Link
T1027.005 - Indicator Removal from Tools
T1036.010 - Masquerade Account Name

MITREへのリンク →

APT1

Score: 5.07

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1550.002 - Pass the Hash

MITREへのリンク →

Lazarus Group

Score: 18.90

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1102.002 - Bidirectional Communication
T1584.004 - Server
T1027.007 - Dynamic API Resolution
T1124 - System Time Discovery
T1566.003 - Spearphishing via Service

MITREへのリンク →

Leviathan

Score: 11.05

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1218.010 - Regsvr32
T1584.004 - Server
T1027.015 - Compression

MITREへのリンク →

ZIRCONIUM

Score: 10.99

Matched TTPs:

T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1036.004 - Masquerade Task or Service
T1102.002 - Bidirectional Communication
T1124 - System Time Discovery

MITREへのリンク →

EXOTIC LILY

Score: 4.84

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1566.003 - Spearphishing via Service

MITREへのリンク →

Molerats

Score: 5.47

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1027.015 - Compression

MITREへのリンク →

Magic Hound

Score: 14.54

Matched TTPs:

T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1036.004 - Masquerade Task or Service
T1102.002 - Bidirectional Communication
T1036.010 - Masquerade Account Name
T1566.003 - Spearphishing via Service

MITREへのリンク →

OilRig

Score: 8.00

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1027.005 - Indicator Removal from Tools
T1566.003 - Spearphishing via Service

MITREへのリンク →

Windshift

Score: 4.84

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1566.003 - Spearphishing via Service

MITREへのリンク →

Cobalt Group

Score: 5.07

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1218.010 - Regsvr32

MITREへのリンク →

APT29

Score: 4.84

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1566.003 - Spearphishing via Service

MITREへのリンク →

TA2541

Score: 5.47

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1027.015 - Compression

MITREへのリンク →

Earth Lusca

Score: 4.28

Matched TTPs:

T1566.002 - Spearphishing Link
T1584.004 - Server

MITREへのリンク →

Storm-1811

Score: 15.97

Matched TTPs:

T1566.002 - Spearphishing Link
T1056 - Input Capture
T1667 - Email Bombing
T1036.010 - Masquerade Account Name
T1566.003 - Spearphishing via Service

MITREへのリンク →

Turla

Score: 12.42

Matched TTPs:

T1566.002 - Spearphishing Link
T1027.005 - Indicator Removal from Tools
T1102.002 - Bidirectional Communication
T1584.004 - Server
T1124 - System Time Discovery

MITREへのリンク →

Wizard Spider

Score: 9.50

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1550.002 - Pass the Hash
T1003.003 - NTDS

MITREへのリンク →

Patchwork

Score: 7.93

Matched TTPs:

T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1027.005 - Indicator Removal from Tools

MITREへのリンク →

APT42

Score: 5.29

Matched TTPs:

T1566.002 - Spearphishing Link
T1056 - Input Capture

MITREへのリンク →

APT39

Score: 8.56

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1056 - Input Capture
T1102.002 - Bidirectional Communication

MITREへのリンク →

Scattered Spider

Score: 4.80

Matched TTPs:

T1598.003 - Spearphishing Link
T1003.003 - NTDS

MITREへのリンク →

APT28

Score: 23.05

Matched TTPs:

T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1102.002 - Bidirectional Communication
T1498 - Network Denial of Service
T1221 - Template Injection
T1550.002 - Pass the Hash
T1003.003 - NTDS
T1669 - Wi-Fi Networks

MITREへのリンク →

Star Blizzard

Score: 6.95

Matched TTPs:

T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1598.002 - Spearphishing Attachment

MITREへのリンク →

Moonstone Sleet

Score: 5.86

Matched TTPs:

T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1566.003 - Spearphishing via Service

MITREへのリンク →

CURIUM

Score: 8.45

Matched TTPs:

T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1124 - System Time Discovery
T1566.003 - Spearphishing via Service

MITREへのリンク →

Dragonfly

Score: 18.90

Matched TTPs:

T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1598.002 - Spearphishing Attachment
T1036.010 - Masquerade Account Name
T1221 - Template Injection
T1584.004 - Server
T1003.003 - NTDS

MITREへのリンク →

Tropic Trooper

Score: 4.03

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1221 - Template Injection

MITREへのリンク →

FIN6

Score: 7.83

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1003.003 - NTDS
T1566.003 - Spearphishing via Service

MITREへのリンク →

BRONZE BUTLER

Score: 3.47

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1124 - System Time Discovery

MITREへのリンク →

WIRTE

Score: 3.62

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1218.010 - Regsvr32

MITREへのリンク →

menuPass

Score: 3.22

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1003.003 - NTDS

MITREへのリンク →

Threat Group-3390

Score: 4.03

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1027.015 - Compression

MITREへのリンク →

Gamaredon Group

Score: 9.58

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1102.002 - Bidirectional Communication
T1221 - Template Injection
T1027.015 - Compression

MITREへのリンク →

Darkhotel

Score: 3.47

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1124 - System Time Discovery

MITREへのリンク →

Inception

Score: 6.77

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1218.010 - Regsvr32
T1221 - Template Injection

MITREへのリンク →

Ajax Security Team

Score: 3.40

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1566.003 - Spearphishing via Service

MITREへのリンク →

TA551

Score: 3.62

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1218.010 - Regsvr32

MITREへのリンク →

APT41

Score: 8.06

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1550.002 - Pass the Hash
T1003.003 - NTDS

MITREへのリンク →

Higaisa

Score: 8.71

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1124 - System Time Discovery
T1027.015 - Compression

MITREへのリンク →

APT12

Score: 3.27

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1102.002 - Bidirectional Communication

MITREへのリンク →

APT19

Score: 3.62

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1218.010 - Regsvr32

MITREへのリンク →

SideCopy

Score: 4.50

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1598.002 - Spearphishing Attachment

MITREへのリンク →

APT37

Score: 3.27

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1102.002 - Bidirectional Communication

MITREへのリンク →

DarkHydrus

Score: 4.03

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1221 - Template Injection

MITREへのリンク →

The White Company

Score: 3.47

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1124 - System Time Discovery

MITREへのリンク →

Aquatic Panda

Score: 4.84

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1550.002 - Pass the Hash

MITREへのリンク →

Carbanak

Score: 4.49

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1102.002 - Bidirectional Communication

MITREへのリンク →

FIN13

Score: 7.18

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1550.002 - Pass the Hash
T1003.003 - NTDS

MITREへのリンク →

Fox Kitten

Score: 4.44

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1003.003 - NTDS

MITREへのリンク →

UNC3886

Score: 7.84

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1027.005 - Indicator Removal from Tools
T1124 - System Time Discovery

MITREへのリンク →

Storm-0501

Score: 4.84

Matched TTPs:

T1036.004 - Masquerade Task or Service
T1218.010 - Regsvr32

MITREへのリンク →

INC Ransom

Score: 3.29

Matched TTPs:

T1566 - Phishing

MITREへのリンク →

Sea Turtle

Score: 3.29

Matched TTPs:

T1566 - Phishing

MITREへのリンク →

Axiom

Score: 3.29

Matched TTPs:

T1566 - Phishing

MITREへのリンク →

AppleJeus

Score: 3.29

Matched TTPs:

T1566 - Phishing

MITREへのリンク →

GOLD SOUTHFIELD

Score: 3.29

Matched TTPs:

T1566 - Phishing

MITREへのリンク →

Deep Panda

Score: 5.90

Matched TTPs:

T1027.005 - Indicator Removal from Tools
T1218.010 - Regsvr32

MITREへのリンク →

GALLIUM

Score: 5.90

Matched TTPs:

T1027.005 - Indicator Removal from Tools
T1550.002 - Pass the Hash

MITREへのリンク →

Equation

Score: 4.13

Matched TTPs:

T1564.005 - Hidden File System

MITREへのリンク →

Strider

Score: 4.13

Matched TTPs:

T1564.005 - Hidden File System

MITREへのリンク →

Volt Typhoon

Score: 7.77

Matched TTPs:

T1584.004 - Server
T1003.003 - NTDS
T1124 - System Time Discovery

MITREへのリンク →

Chimera

Score: 7.68

Matched TTPs:

T1550.002 - Pass the Hash
T1003.003 - NTDS
T1124 - System Time Discovery

MITREへのリンク →

Medusa Group

Score: 6.88

Matched TTPs:

T1003.003 - NTDS
T1218.014 - MMC

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

APT28

Score: 0.84

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1221 - Template Injection
T1598.003 - Spearphishing Link
T1102.002 - Bidirectional Communication
T1669 - Wi-Fi Networks
T1003.003 - NTDS
T1498 - Network Denial of Service
T1550.002 - Pass the Hash

MITREへのリンク →

Dragonfly

Score: 0.69

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1221 - Template Injection
T1598.002 - Spearphishing Attachment
T1036.010 - Masquerade Account Name
T1584.004 - Server
T1598.003 - Spearphishing Link
T1003.003 - NTDS

MITREへのリンク →

Lazarus Group

Score: 0.67

Matched TTPs:

T1566.003 - Spearphishing via Service
T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1124 - System Time Discovery
T1566.002 - Spearphishing Link
T1027.007 - Dynamic API Resolution
T1584.004 - Server
T1102.002 - Bidirectional Communication

MITREへのリンク →

Storm-1811

Score: 0.67

Matched TTPs:

T1566.003 - Spearphishing via Service
T1056 - Input Capture
T1566.002 - Spearphishing Link
T1036.010 - Masquerade Account Name
T1667 - Email Bombing

MITREへのリンク →

Kimsuky

Score: 0.63

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1036.004 - Masquerade Task or Service
T1566 - Phishing
T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1102.002 - Bidirectional Communication
T1218.010 - Regsvr32
T1550.002 - Pass the Hash

MITREへのリンク →

Sandworm Team

Score: 0.62

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1566.002 - Spearphishing Link
T1584.004 - Server
T1598.003 - Spearphishing Link
T1102.002 - Bidirectional Communication
T1491.002 - External Defacement
T1003.003 - NTDS

MITREへのリンク →

Magic Hound

Score: 0.55

Matched TTPs:

T1566.003 - Spearphishing via Service
T1036.004 - Masquerade Task or Service
T1566.002 - Spearphishing Link
T1036.010 - Masquerade Account Name
T1598.003 - Spearphishing Link
T1102.002 - Bidirectional Communication

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る