Trusted Design

FireEye: Amazon Same Day Credential Shipping

概要

July 19, 2016 | by Gaurav Dalal, Rundong Liu, Mary Grace Timcang, Lance Ward | FireEye has identified a campaign involving phishing websites that appear as legitimate Amazon sites. Amazon is the largest online retailer and threat actors frequently target its customers. In this attack, a person browsing the internet would be directed to authentic looking – yet fake – Amazon webpages that request a variety of information, including Amazon credentials, home address and payment card data. Any information entered into the phishing websites could be sent to the attackers and potentially used to make fraudulent charges and commit other crimes.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

Fake Your Amazon.co.uk order has been dispatched tries to deliver malware My Online Security (score: 0.62)
Operation Clandestine Wolf – Adobe Flash Zero-Day APT3 Phishing (score: 0.58)
"Purchase Order Confirmation For August-2017" - Fareit Phishing E-mail (score: 0.56)
Dyreza Campaigners target Fulfillment and Warehousing Industry (score: 0.55)
New Spear Phishing Campaign Pretends to be EFF (score: 0.55)

このPulseに関連する脅威アクター (事実ベース)

Scattered Spider

Score: 5.90

Matched TTPs:

T1566.002 - Spearphishing Link
T1197 - BITS Jobs

MITREへのリンク →

Mustang Panda

Score: 15.19

Matched TTPs:

T1566.002 - Spearphishing Link
T1608.005 - Link Target
T1567.002 - Exfiltration to Cloud Storage
T1055.005 - Thread Local Storage
T1556 - Modify Authentication Process

MITREへのリンク →

ZIRCONIUM

Score: 7.91

Matched TTPs:

T1566.002 - Spearphishing Link
T1608.005 - Link Target
T1197 - BITS Jobs

MITREへのリンク →

APT32

Score: 11.65

Matched TTPs:

T1566.002 - Spearphishing Link
T1608.005 - Link Target
T1059.012 - Hypervisor CLI
T1556 - Modify Authentication Process
T1490 - Inhibit System Recovery

MITREへのリンク →

Kimsuky

Score: 17.35

Matched TTPs:

T1566.002 - Spearphishing Link
T1608.005 - Link Target
T1001 - Data Obfuscation
T1197 - BITS Jobs
T1132.002 - Non-Standard Encoding
T1490 - Inhibit System Recovery

MITREへのリンク →

Magic Hound

Score: 8.76

Matched TTPs:

T1566.002 - Spearphishing Link
T1608.005 - Link Target
T1059.012 - Hypervisor CLI
T1547.008 - LSASS Driver

MITREへのリンク →

APT28

Score: 14.21

Matched TTPs:

T1566.002 - Spearphishing Link
T1608.005 - Link Target
T1197 - BITS Jobs
T1059.012 - Hypervisor CLI
T1146 - Clear Command History

MITREへのリンク →

Moonstone Sleet

Score: 8.42

Matched TTPs:

T1566.002 - Spearphishing Link
T1197 - BITS Jobs
T1547.008 - LSASS Driver

MITREへのリンク →

CURIUM

Score: 10.37

Matched TTPs:

T1566.002 - Spearphishing Link
T1218.001 - Compiled HTML File
T1059.012 - Hypervisor CLI
T1547.008 - LSASS Driver

MITREへのリンク →

Dragonfly

Score: 4.22

Matched TTPs:

T1566.002 - Spearphishing Link
T1059.012 - Hypervisor CLI

MITREへのリンク →

Patchwork

Score: 7.38

Matched TTPs:

T1566.002 - Spearphishing Link
T1001 - Data Obfuscation
T1059.012 - Hypervisor CLI

MITREへのリンク →

MoustachedBouncer

Score: 4.54

Matched TTPs:

T1055.003 - Thread Execution Hijacking

MITREへのリンク →

Earth Lusca

Score: 7.40

Matched TTPs:

T1608.005 - Link Target
T1218.001 - Compiled HTML File
T1059.012 - Hypervisor CLI

MITREへのリンク →

HAFNIUM

Score: 4.68

Matched TTPs:

T1608.005 - Link Target
T1490 - Inhibit System Recovery

MITREへのリンク →

Contagious Interview

Score: 7.28

Matched TTPs:

T1608.005 - Link Target
T1547.008 - LSASS Driver
T1556 - Modify Authentication Process

MITREへのリンク →

Turla

Score: 13.69

Matched TTPs:

T1608.005 - Link Target
T1218.001 - Compiled HTML File
T1556.009 - Conditional Access Policies
T1059.012 - Hypervisor CLI
T1490 - Inhibit System Recovery

MITREへのリンク →

APT29

Score: 7.20

Matched TTPs:

T1608.005 - Link Target
T1547.008 - LSASS Driver
T1490 - Inhibit System Recovery

MITREへのリンク →

FIN7

Score: 4.68

Matched TTPs:

T1608.005 - Link Target
T1490 - Inhibit System Recovery

MITREへのリンク →

Lazarus Group

Score: 17.02

Matched TTPs:

T1608.005 - Link Target
T1567.002 - Exfiltration to Cloud Storage
T1059.012 - Hypervisor CLI
T1055.005 - Thread Local Storage
T1547.008 - LSASS Driver
T1556 - Modify Authentication Process

MITREへのリンク →

Gamaredon Group

Score: 6.55

Matched TTPs:

T1608.005 - Link Target
T1061 - Graphical User Interface

MITREへのリンク →

TA2541

Score: 5.16

Matched TTPs:

T1608.005 - Link Target
T1001 - Data Obfuscation

MITREへのリンク →

Winter Vivern

Score: 5.39

Matched TTPs:

T1218.001 - Compiled HTML File
T1059.012 - Hypervisor CLI

MITREへのリンク →

Gorgon Group

Score: 3.15

Matched TTPs:

T1001 - Data Obfuscation

MITREへのリンク →

Threat Group-3390

Score: 4.92

Matched TTPs:

T1001 - Data Obfuscation
T1059.012 - Hypervisor CLI

MITREへのリンク →

BlackByte

Score: 3.15

Matched TTPs:

T1001 - Data Obfuscation

MITREへのリンク →

menuPass

Score: 3.15

Matched TTPs:

T1001 - Data Obfuscation

MITREへのリンク →

OilRig

Score: 13.43

Matched TTPs:

T1592.002 - Software
T1556.009 - Conditional Access Policies
T1547.008 - LSASS Driver
T1556 - Modify Authentication Process

MITREへのリンク →

Higaisa

Score: 3.84

Matched TTPs:

T1567.002 - Exfiltration to Cloud Storage

MITREへのリンク →

Stealth Falcon

Score: 3.62

Matched TTPs:

T1556.009 - Conditional Access Policies

MITREへのリンク →

Wizard Spider

Score: 6.37

Matched TTPs:

T1556.009 - Conditional Access Policies
T1556 - Modify Authentication Process

MITREへのリンク →

PLATINUM

Score: 6.30

Matched TTPs:

T1059.012 - Hypervisor CLI
T1686 - Disable or Modify System Firewall

MITREへのリンク →

Windshift

Score: 4.29

Matched TTPs:

T1059.012 - Hypervisor CLI
T1547.008 - LSASS Driver

MITREへのリンク →

Axiom

Score: 6.30

Matched TTPs:

T1059.012 - Hypervisor CLI
T1160 - Launch Daemon

MITREへのリンク →

Dark Caracal

Score: 4.29

Matched TTPs:

T1059.012 - Hypervisor CLI
T1547.008 - LSASS Driver

MITREへのリンク →

PROMETHIUM

Score: 4.43

Matched TTPs:

T1059.012 - Hypervisor CLI
T1490 - Inhibit System Recovery

MITREへのリンク →

Chimera

Score: 3.62

Matched TTPs:

T1132.002 - Non-Standard Encoding

MITREへのリンク →

APT42

Score: 3.62

Matched TTPs:

T1132.002 - Non-Standard Encoding

MITREへのリンク →

LAPSUS$

Score: 3.62

Matched TTPs:

T1132.002 - Non-Standard Encoding

MITREへのリンク →

FIN6

Score: 5.27

Matched TTPs:

T1547.008 - LSASS Driver
T1556 - Modify Authentication Process

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Lazarus Group

Score: 0.77

Matched TTPs:

T1059.012 - Hypervisor CLI
T1567.002 - Exfiltration to Cloud Storage
T1547.008 - LSASS Driver
T1556 - Modify Authentication Process
T1608.005 - Link Target
T1055.005 - Thread Local Storage

MITREへのリンク →

Kimsuky

Score: 0.76

Matched TTPs:

T1490 - Inhibit System Recovery
T1132.002 - Non-Standard Encoding
T1197 - BITS Jobs
T1608.005 - Link Target
T1566.002 - Spearphishing Link
T1001 - Data Obfuscation

MITREへのリンク →

Mustang Panda

Score: 0.70

Matched TTPs:

T1567.002 - Exfiltration to Cloud Storage
T1566.002 - Spearphishing Link
T1556 - Modify Authentication Process
T1055.005 - Thread Local Storage
T1608.005 - Link Target

MITREへのリンク →

APT28

Score: 0.67

Matched TTPs:

T1059.012 - Hypervisor CLI
T1197 - BITS Jobs
T1608.005 - Link Target
T1566.002 - Spearphishing Link
T1146 - Clear Command History

MITREへのリンク →

Turla

Score: 0.65

Matched TTPs:

T1059.012 - Hypervisor CLI
T1490 - Inhibit System Recovery
T1556.009 - Conditional Access Policies
T1218.001 - Compiled HTML File
T1608.005 - Link Target

MITREへのリンク →

OilRig

Score: 0.62

Matched TTPs:

T1592.002 - Software
T1556 - Modify Authentication Process
T1556.009 - Conditional Access Policies
T1547.008 - LSASS Driver

MITREへのリンク →

APT32

Score: 0.56

Matched TTPs:

T1059.012 - Hypervisor CLI
T1490 - Inhibit System Recovery
T1556 - Modify Authentication Process
T1608.005 - Link Target
T1566.002 - Spearphishing Link

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る