Trusted Design

FireEye: Amazon Same Day Credential Shipping

概要

July 19, 2016 | by Gaurav Dalal, Rundong Liu, Mary Grace Timcang, Lance Ward | FireEye has identified a campaign involving phishing websites that appear as legitimate Amazon sites. Amazon is the largest online retailer and threat actors frequently target its customers. In this attack, a person browsing the internet would be directed to authentic looking – yet fake – Amazon webpages that request a variety of information, including Amazon credentials, home address and payment card data. Any information entered into the phishing websites could be sent to the attackers and potentially used to make fraudulent charges and commit other crimes.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

Fake Your Amazon.co.uk order has been dispatched tries to deliver malware My Online Security (score: 0.62)
Operation Clandestine Wolf – Adobe Flash Zero-Day APT3 Phishing (score: 0.58)
"Purchase Order Confirmation For August-2017" - Fareit Phishing E-mail (score: 0.56)
Dyreza Campaigners target Fulfillment and Warehousing Industry (score: 0.55)
New Spear Phishing Campaign Pretends to be EFF (score: 0.55)

このPulseに関連する脅威アクター (事実ベース)

Scattered Spider

Score: 5.90

Matched TTPs:

T1598.003 - Spearphishing Link
T1598 - Phishing for Information

MITREへのリンク →

Mustang Panda

Score: 15.19

Matched TTPs:

T1598.003 - Spearphishing Link
T1583.006 - Web Services
T1001.003 - Protocol or Service Impersonation
T1027.007 - Dynamic API Resolution
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

ZIRCONIUM

Score: 7.91

Matched TTPs:

T1598.003 - Spearphishing Link
T1583.006 - Web Services
T1598 - Phishing for Information

MITREへのリンク →

APT32

Score: 11.65

Matched TTPs:

T1598.003 - Spearphishing Link
T1583.006 - Web Services
T1189 - Drive-by Compromise
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol
T1078.003 - Local Accounts

MITREへのリンク →

Kimsuky

Score: 17.35

Matched TTPs:

T1598.003 - Spearphishing Link
T1583.006 - Web Services
T1055.012 - Process Hollowing
T1598 - Phishing for Information
T1111 - Multi-Factor Authentication Interception
T1078.003 - Local Accounts

MITREへのリンク →

Magic Hound

Score: 8.76

Matched TTPs:

T1598.003 - Spearphishing Link
T1583.006 - Web Services
T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT28

Score: 14.21

Matched TTPs:

T1598.003 - Spearphishing Link
T1583.006 - Web Services
T1598 - Phishing for Information
T1189 - Drive-by Compromise
T1498 - Network Denial of Service

MITREへのリンク →

Moonstone Sleet

Score: 8.42

Matched TTPs:

T1598.003 - Spearphishing Link
T1598 - Phishing for Information
T1566.003 - Spearphishing via Service

MITREへのリンク →

CURIUM

Score: 10.37

Matched TTPs:

T1598.003 - Spearphishing Link
T1584.006 - Web Services
T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

Dragonfly

Score: 4.22

Matched TTPs:

T1598.003 - Spearphishing Link
T1189 - Drive-by Compromise

MITREへのリンク →

Patchwork

Score: 7.38

Matched TTPs:

T1598.003 - Spearphishing Link
T1055.012 - Process Hollowing
T1189 - Drive-by Compromise

MITREへのリンク →

MoustachedBouncer

Score: 4.54

Matched TTPs:

T1659 - Content Injection

MITREへのリンク →

Earth Lusca

Score: 7.40

Matched TTPs:

T1583.006 - Web Services
T1584.006 - Web Services
T1189 - Drive-by Compromise

MITREへのリンク →

HAFNIUM

Score: 4.68

Matched TTPs:

T1583.006 - Web Services
T1078.003 - Local Accounts

MITREへのリンク →

Contagious Interview

Score: 7.28

Matched TTPs:

T1583.006 - Web Services
T1566.003 - Spearphishing via Service
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

Turla

Score: 13.69

Matched TTPs:

T1583.006 - Web Services
T1584.006 - Web Services
T1555.004 - Windows Credential Manager
T1189 - Drive-by Compromise
T1078.003 - Local Accounts

MITREへのリンク →

APT29

Score: 7.20

Matched TTPs:

T1583.006 - Web Services
T1566.003 - Spearphishing via Service
T1078.003 - Local Accounts

MITREへのリンク →

FIN7

Score: 4.68

Matched TTPs:

T1583.006 - Web Services
T1078.003 - Local Accounts

MITREへのリンク →

Lazarus Group

Score: 17.02

Matched TTPs:

T1583.006 - Web Services
T1001.003 - Protocol or Service Impersonation
T1189 - Drive-by Compromise
T1027.007 - Dynamic API Resolution
T1566.003 - Spearphishing via Service
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

Gamaredon Group

Score: 6.55

Matched TTPs:

T1583.006 - Web Services
T1001 - Data Obfuscation

MITREへのリンク →

TA2541

Score: 5.16

Matched TTPs:

T1583.006 - Web Services
T1055.012 - Process Hollowing

MITREへのリンク →

Winter Vivern

Score: 5.39

Matched TTPs:

T1584.006 - Web Services
T1189 - Drive-by Compromise

MITREへのリンク →

Gorgon Group

Score: 3.15

Matched TTPs:

T1055.012 - Process Hollowing

MITREへのリンク →

Threat Group-3390

Score: 4.92

Matched TTPs:

T1055.012 - Process Hollowing
T1189 - Drive-by Compromise

MITREへのリンク →

BlackByte

Score: 3.15

Matched TTPs:

T1055.012 - Process Hollowing

MITREへのリンク →

menuPass

Score: 3.15

Matched TTPs:

T1055.012 - Process Hollowing

MITREへのリンク →

OilRig

Score: 13.43

Matched TTPs:

T1137.004 - Outlook Home Page
T1555.004 - Windows Credential Manager
T1566.003 - Spearphishing via Service
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

Higaisa

Score: 3.84

Matched TTPs:

T1001.003 - Protocol or Service Impersonation

MITREへのリンク →

Stealth Falcon

Score: 3.62

Matched TTPs:

T1555.004 - Windows Credential Manager

MITREへのリンク →

Wizard Spider

Score: 6.37

Matched TTPs:

T1555.004 - Windows Credential Manager
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

PLATINUM

Score: 6.30

Matched TTPs:

T1189 - Drive-by Compromise
T1056.004 - Credential API Hooking

MITREへのリンク →

Windshift

Score: 4.29

Matched TTPs:

T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

Axiom

Score: 6.30

Matched TTPs:

T1189 - Drive-by Compromise
T1001.002 - Steganography

MITREへのリンク →

Dark Caracal

Score: 4.29

Matched TTPs:

T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

PROMETHIUM

Score: 4.43

Matched TTPs:

T1189 - Drive-by Compromise
T1078.003 - Local Accounts

MITREへのリンク →

Chimera

Score: 3.62

Matched TTPs:

T1111 - Multi-Factor Authentication Interception

MITREへのリンク →

APT42

Score: 3.62

Matched TTPs:

T1111 - Multi-Factor Authentication Interception

MITREへのリンク →

LAPSUS$

Score: 3.62

Matched TTPs:

T1111 - Multi-Factor Authentication Interception

MITREへのリンク →

FIN6

Score: 5.27

Matched TTPs:

T1566.003 - Spearphishing via Service
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Lazarus Group

Score: 0.77

Matched TTPs:

T1566.003 - Spearphishing via Service
T1027.007 - Dynamic API Resolution
T1189 - Drive-by Compromise
T1583.006 - Web Services
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol
T1001.003 - Protocol or Service Impersonation

MITREへのリンク →

Kimsuky

Score: 0.76

Matched TTPs:

T1598.003 - Spearphishing Link
T1598 - Phishing for Information
T1055.012 - Process Hollowing
T1583.006 - Web Services
T1111 - Multi-Factor Authentication Interception
T1078.003 - Local Accounts

MITREへのリンク →

Mustang Panda

Score: 0.70

Matched TTPs:

T1598.003 - Spearphishing Link
T1027.007 - Dynamic API Resolution
T1583.006 - Web Services
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol
T1001.003 - Protocol or Service Impersonation

MITREへのリンク →

APT28

Score: 0.67

Matched TTPs:

T1598.003 - Spearphishing Link
T1598 - Phishing for Information
T1189 - Drive-by Compromise
T1583.006 - Web Services
T1498 - Network Denial of Service

MITREへのリンク →

Turla

Score: 0.65

Matched TTPs:

T1555.004 - Windows Credential Manager
T1189 - Drive-by Compromise
T1583.006 - Web Services
T1078.003 - Local Accounts
T1584.006 - Web Services

MITREへのリンク →

OilRig

Score: 0.62

Matched TTPs:

T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol
T1555.004 - Windows Credential Manager
T1566.003 - Spearphishing via Service
T1137.004 - Outlook Home Page

MITREへのリンク →

APT32

Score: 0.56

Matched TTPs:

T1598.003 - Spearphishing Link
T1189 - Drive-by Compromise
T1583.006 - Web Services
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol
T1078.003 - Local Accounts

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る