Trusted Design

InfoArmor Uncovers Malicious Torrent Distribution Network

概要

Security researchers at InfoArmor said they discovered the so-called "RAUM" tool in underground forums. Popular torrent files, especially games, are packaged with malicious coding and then uploaded for unsuspecting users to download. The RAUM tool has been found distributing ransomware such as CryptXXX, in addition to the Trojan Dridex and the password-lifting Pony spyware. The makers of RAUM are believed to be an Eastern European organized crime group known as Black Team. The underground forums where the tool is sold are invite-only, with the verification process of new members quite strict. To infect more users, the makers of RAUM were also on the lookout for known uploaders of torrent files. They would then hijack their accounts, and use them to spread even more malicious torrent files.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

Necurs Botnet Fuels Massive Spam Campaigns Spreading Jaff Ransomware (score: 0.64)
Ransomware: Torrent Locker & Zerolocker Associated (score: 0.64)
MHT: Ransomware32 - The First JavaScript Ransomware (score: 0.63)
CryptXXX: New Ransomware From the Actors Behind Reveton (score: 0.63)
RockLoader – New Upatre-like Downloader Pushed by Dridex, (score: 0.63)

このPulseに関連する脅威アクター (事実ベース)

APT41

Score: 4.13

Matched TTPs:

T1560.003 - Archive via Custom Method
T1199 - Trusted Relationship

MITREへのリンク →

Scattered Spider

Score: 9.05

Matched TTPs:

T1560.003 - Archive via Custom Method
T1566.002 - Spearphishing Link
T1136.002 - Domain Account
T1199 - Trusted Relationship

MITREへのリンク →

TA505

Score: 8.57

Matched TTPs:

T1560.003 - Archive via Custom Method
T1091 - Replication Through Removable Media
T1136.002 - Domain Account
T1199 - Trusted Relationship

MITREへのリンク →

Volt Typhoon

Score: 10.35

Matched TTPs:

T1560.003 - Archive via Custom Method
T1049 - System Network Connections Discovery
T1199 - Trusted Relationship
T1578.001 - Create Snapshot

MITREへのリンク →

APT3

Score: 6.91

Matched TTPs:

T1560.003 - Archive via Custom Method
T1578.002 - Create Cloud Instance

MITREへのリンク →

FIN13

Score: 8.99

Matched TTPs:

T1560.003 - Archive via Custom Method
T1558 - Steal or Forge Kerberos Tickets
T1199 - Trusted Relationship
T1105 - Ingress Tool Transfer

MITREへのリンク →

OilRig

Score: 19.76

Matched TTPs:

T1552.005 - Cloud Instance Metadata API
T1091 - Replication Through Removable Media
T1005 - Data from Local System
T1558 - Steal or Forge Kerberos Tickets
T1199 - Trusted Relationship
T1592.002 - Software
T1128 - Netsh Helper DLL

MITREへのリンク →

Gamaredon Group

Score: 21.01

Matched TTPs:

T1552.005 - Cloud Instance Metadata API
T1091 - Replication Through Removable Media
T1562.010 - Downgrade Attack
T1199 - Trusted Relationship
T1061 - Graphical User Interface
T1542.004 - ROMMONkit
T1546.017 - Udev Rules

MITREへのリンク →

APT28

Score: 27.62

Matched TTPs:

T1552.005 - Cloud Instance Metadata API
T1566.002 - Spearphishing Link
T1558 - Steal or Forge Kerberos Tickets
T1199 - Trusted Relationship
T1542.004 - ROMMONkit
T1105 - Ingress Tool Transfer
T1055.008 - Ptrace System Calls
T1546.007 - Netsh Helper DLL
T1566.003 - Spearphishing via Service

MITREへのリンク →

Turla

Score: 12.19

Matched TTPs:

T1552.005 - Cloud Instance Metadata API
T1136.002 - Domain Account
T1199 - Trusted Relationship
T1578.001 - Create Snapshot
T1490 - Inhibit System Recovery

MITREへのリンク →

Sidewinder

Score: 5.05

Matched TTPs:

T1566.002 - Spearphishing Link
T1578.001 - Create Snapshot

MITREへのリンク →

Mustang Panda

Score: 7.95

Matched TTPs:

T1566.002 - Spearphishing Link
T1091 - Replication Through Removable Media
T1199 - Trusted Relationship
T1105 - Ingress Tool Transfer

MITREへのリンク →

Sandworm Team

Score: 18.78

Matched TTPs:

T1566.002 - Spearphishing Link
T1091 - Replication Through Removable Media
T1005 - Data from Local System
T1558 - Steal or Forge Kerberos Tickets
T1049 - System Network Connections Discovery
T1199 - Trusted Relationship
T1187 - Forced Authentication

MITREへのリンク →

Silent Librarian

Score: 3.31

Matched TTPs:

T1566.002 - Spearphishing Link
T1199 - Trusted Relationship

MITREへのリンク →

ZIRCONIUM

Score: 7.24

Matched TTPs:

T1566.002 - Spearphishing Link
T1558 - Steal or Forge Kerberos Tickets
T1578.001 - Create Snapshot

MITREへのリンク →

APT32

Score: 15.55

Matched TTPs:

T1566.002 - Spearphishing Link
T1091 - Replication Through Removable Media
T1558 - Steal or Forge Kerberos Tickets
T1199 - Trusted Relationship
T1027.014 - Polymorphic Code
T1105 - Ingress Tool Transfer
T1490 - Inhibit System Recovery

MITREへのリンク →

Kimsuky

Score: 13.84

Matched TTPs:

T1566.002 - Spearphishing Link
T1091 - Replication Through Removable Media
T1199 - Trusted Relationship
T1001 - Data Obfuscation
T1027.014 - Polymorphic Code
T1490 - Inhibit System Recovery

MITREへのリンク →

Magic Hound

Score: 10.77

Matched TTPs:

T1566.002 - Spearphishing Link
T1199 - Trusted Relationship
T1187 - Forced Authentication
T1578.002 - Create Cloud Instance

MITREへのリンク →

Star Blizzard

Score: 5.28

Matched TTPs:

T1566.002 - Spearphishing Link
T1091 - Replication Through Removable Media
T1199 - Trusted Relationship

MITREへのリンク →

Moonstone Sleet

Score: 4.43

Matched TTPs:

T1566.002 - Spearphishing Link
T1091 - Replication Through Removable Media

MITREへのリンク →

CURIUM

Score: 5.05

Matched TTPs:

T1566.002 - Spearphishing Link
T1578.001 - Create Snapshot

MITREへのリンク →

Dragonfly

Score: 6.93

Matched TTPs:

T1566.002 - Spearphishing Link
T1199 - Trusted Relationship
T1578.002 - Create Cloud Instance

MITREへのリンク →

Patchwork

Score: 6.46

Matched TTPs:

T1566.002 - Spearphishing Link
T1199 - Trusted Relationship
T1001 - Data Obfuscation

MITREへのリンク →

TA2541

Score: 14.33

Matched TTPs:

T1091 - Replication Through Removable Media
T1136.002 - Domain Account
T1199 - Trusted Relationship
T1001 - Data Obfuscation
T1128 - Netsh Helper DLL
T1546.017 - Udev Rules

MITREへのリンク →

Earth Lusca

Score: 5.28

Matched TTPs:

T1091 - Replication Through Removable Media
T1136.002 - Domain Account
T1199 - Trusted Relationship

MITREへのリンク →

LuminousMoth

Score: 7.95

Matched TTPs:

T1091 - Replication Through Removable Media
T1136.002 - Domain Account
T1199 - Trusted Relationship
T1105 - Ingress Tool Transfer

MITREへのリンク →

Mustard Tempest

Score: 6.51

Matched TTPs:

T1091 - Replication Through Removable Media
T1543.002 - Systemd Service

MITREへのリンク →

TeamTNT

Score: 4.16

Matched TTPs:

T1091 - Replication Through Removable Media
T1558 - Steal or Forge Kerberos Tickets

MITREへのリンク →

LazyScripter

Score: 6.62

Matched TTPs:

T1091 - Replication Through Removable Media
T1558 - Steal or Forge Kerberos Tickets
T1136.002 - Domain Account

MITREへのリンク →

Threat Group-3390

Score: 13.26

Matched TTPs:

T1091 - Replication Through Removable Media
T1218.003 - CMSTP
T1199 - Trusted Relationship
T1001 - Data Obfuscation
T1546.017 - Udev Rules

MITREへのリンク →

BlackByte

Score: 8.97

Matched TTPs:

T1091 - Replication Through Removable Media
T1562.010 - Downgrade Attack
T1001 - Data Obfuscation

MITREへのリンク →

Contagious Interview

Score: 8.85

Matched TTPs:

T1091 - Replication Through Removable Media
T1558 - Steal or Forge Kerberos Tickets
T1562.010 - Downgrade Attack
T1199 - Trusted Relationship

MITREへのリンク →

FIN7

Score: 10.75

Matched TTPs:

T1091 - Replication Through Removable Media
T1199 - Trusted Relationship
T1105 - Ingress Tool Transfer
T1578.001 - Create Snapshot
T1490 - Inhibit System Recovery

MITREへのリンク →

APT42

Score: 5.57

Matched TTPs:

T1091 - Replication Through Removable Media
T1199 - Trusted Relationship
T1128 - Netsh Helper DLL

MITREへのリンク →

Ember Bear

Score: 8.49

Matched TTPs:

T1005 - Data from Local System
T1558 - Steal or Forge Kerberos Tickets
T1136.002 - Domain Account

MITREへのリンク →

menuPass

Score: 9.22

Matched TTPs:

T1558 - Steal or Forge Kerberos Tickets
T1199 - Trusted Relationship
T1542.004 - ROMMONkit
T1001 - Data Obfuscation

MITREへのリンク →

BRONZE BUTLER

Score: 8.66

Matched TTPs:

T1558 - Steal or Forge Kerberos Tickets
T1199 - Trusted Relationship
T1542.004 - ROMMONkit
T1578.001 - Create Snapshot

MITREへのリンク →

Aoqin Dragon

Score: 3.04

Matched TTPs:

T1558 - Steal or Forge Kerberos Tickets
T1199 - Trusted Relationship

MITREへのリンク →

Storm-1811

Score: 6.66

Matched TTPs:

T1558 - Steal or Forge Kerberos Tickets
T1199 - Trusted Relationship
T1578.002 - Create Cloud Instance

MITREへのリンク →

TA551

Score: 4.93

Matched TTPs:

T1558 - Steal or Forge Kerberos Tickets
T1027.014 - Polymorphic Code

MITREへのリンク →

Medusa Group

Score: 16.80

Matched TTPs:

T1218.003 - CMSTP
T1199 - Trusted Relationship
T1128 - Netsh Helper DLL
T1598 - Phishing for Information
T1094 - Custom Command and Control Protocol

MITREへのリンク →

LAPSUS$

Score: 3.31

Matched TTPs:

T1136.002 - Domain Account
T1199 - Trusted Relationship

MITREへのリンク →

Metador

Score: 3.31

Matched TTPs:

T1136.002 - Domain Account
T1199 - Trusted Relationship

MITREへのリンク →

APT1

Score: 3.31

Matched TTPs:

T1136.002 - Domain Account
T1199 - Trusted Relationship

MITREへのリンク →

Aquatic Panda

Score: 3.31

Matched TTPs:

T1136.002 - Domain Account
T1199 - Trusted Relationship

MITREへのリンク →

UNC3886

Score: 5.05

Matched TTPs:

T1136.002 - Domain Account
T1578.001 - Create Snapshot

MITREへのリンク →

Andariel

Score: 6.30

Matched TTPs:

T1136.002 - Domain Account
T1187 - Forced Authentication

MITREへのリンク →

BackdoorDiplomacy

Score: 3.31

Matched TTPs:

T1136.002 - Domain Account
T1199 - Trusted Relationship

MITREへのリンク →

HAFNIUM

Score: 13.09

Matched TTPs:

T1049 - System Network Connections Discovery
T1105 - Ingress Tool Transfer
T1055.008 - Ptrace System Calls
T1490 - Inhibit System Recovery

MITREへのリンク →

Axiom

Score: 3.62

Matched TTPs:

T1049 - System Network Connections Discovery

MITREへのリンク →

APT33

Score: 4.98

Matched TTPs:

T1567.001 - Exfiltration to Code Repository
T1199 - Trusted Relationship

MITREへのリンク →

Wizard Spider

Score: 4.98

Matched TTPs:

T1567.001 - Exfiltration to Code Repository
T1199 - Trusted Relationship

MITREへのリンク →

Inception

Score: 3.60

Matched TTPs:

T1199 - Trusted Relationship
T1027.014 - Polymorphic Code

MITREへのリンク →

APT29

Score: 3.52

Matched TTPs:

T1199 - Trusted Relationship
T1490 - Inhibit System Recovery

MITREへのリンク →

FIN8

Score: 3.60

Matched TTPs:

T1199 - Trusted Relationship
T1128 - Netsh Helper DLL

MITREへのリンク →

FIN6

Score: 3.60

Matched TTPs:

T1199 - Trusted Relationship
T1128 - Netsh Helper DLL

MITREへのリンク →

Sea Turtle

Score: 3.52

Matched TTPs:

T1199 - Trusted Relationship
T1490 - Inhibit System Recovery

MITREへのリンク →

WIRTE

Score: 3.60

Matched TTPs:

T1199 - Trusted Relationship
T1027.014 - Polymorphic Code

MITREへのリンク →

Cobalt Group

Score: 6.34

Matched TTPs:

T1199 - Trusted Relationship
T1027.014 - Polymorphic Code
T1128 - Netsh Helper DLL

MITREへのリンク →

Lazarus Group

Score: 6.11

Matched TTPs:

T1199 - Trusted Relationship
T1105 - Ingress Tool Transfer
T1578.001 - Create Snapshot

MITREへのリンク →

FIN10

Score: 3.52

Matched TTPs:

T1199 - Trusted Relationship
T1490 - Inhibit System Recovery

MITREへのリンク →

Gorgon Group

Score: 4.00

Matched TTPs:

T1199 - Trusted Relationship
T1001 - Data Obfuscation

MITREへのリンク →

Chimera

Score: 6.48

Matched TTPs:

T1199 - Trusted Relationship
T1542.004 - ROMMONkit
T1578.001 - Create Snapshot

MITREへのリンク →

Play

Score: 3.52

Matched TTPs:

T1199 - Trusted Relationship
T1490 - Inhibit System Recovery

MITREへのリンク →

APT19

Score: 3.60

Matched TTPs:

T1199 - Trusted Relationship
T1027.014 - Polymorphic Code

MITREへのリンク →

Blue Mockingbird

Score: 8.13

Matched TTPs:

T1199 - Trusted Relationship
T1027.014 - Polymorphic Code
T1001.001 - Junk Data

MITREへのリンク →

RedCurl

Score: 8.45

Matched TTPs:

T1542.004 - ROMMONkit
T1128 - Netsh Helper DLL
T1105 - Ingress Tool Transfer

MITREへのリンク →

Sowbug

Score: 3.03

Matched TTPs:

T1542.004 - ROMMONkit

MITREへのリンク →

Fox Kitten

Score: 3.03

Matched TTPs:

T1542.004 - ROMMONkit

MITREへのリンク →

Leviathan

Score: 5.90

Matched TTPs:

T1027.014 - Polymorphic Code
T1546.017 - Udev Rules

MITREへのリンク →

Velvet Ant

Score: 9.54

Matched TTPs:

T1128 - Netsh Helper DLL
T1490 - Inhibit System Recovery
T1566.003 - Spearphishing via Service

MITREへのリンク →

Tropic Trooper

Score: 8.08

Matched TTPs:

T1128 - Netsh Helper DLL
T1105 - Ingress Tool Transfer
T1490 - Inhibit System Recovery

MITREへのリンク →

Higaisa

Score: 5.74

Matched TTPs:

T1578.001 - Create Snapshot
T1546.017 - Udev Rules

MITREへのリンク →

Molerats

Score: 3.15

Matched TTPs:

T1546.017 - Udev Rules

MITREへのリンク →

Mofang

Score: 3.15

Matched TTPs:

T1546.017 - Udev Rules

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

APT28

Score: 0.81

Matched TTPs:

T1566.003 - Spearphishing via Service
T1546.007 - Netsh Helper DLL
T1542.004 - ROMMONkit
T1558 - Steal or Forge Kerberos Tickets
T1055.008 - Ptrace System Calls
T1552.005 - Cloud Instance Metadata API
T1105 - Ingress Tool Transfer
T1199 - Trusted Relationship
T1566.002 - Spearphishing Link

MITREへのリンク →

Gamaredon Group

Score: 0.64

Matched TTPs:

T1542.004 - ROMMONkit
T1061 - Graphical User Interface
T1546.017 - Udev Rules
T1552.005 - Cloud Instance Metadata API
T1199 - Trusted Relationship
T1562.010 - Downgrade Attack
T1091 - Replication Through Removable Media

MITREへのリンク →

Medusa Group

Score: 0.60

Matched TTPs:

T1094 - Custom Command and Control Protocol
T1218.003 - CMSTP
T1128 - Netsh Helper DLL
T1199 - Trusted Relationship
T1598 - Phishing for Information

MITREへのリンク →

OilRig

Score: 0.59

Matched TTPs:

T1005 - Data from Local System
T1558 - Steal or Forge Kerberos Tickets
T1592.002 - Software
T1552.005 - Cloud Instance Metadata API
T1128 - Netsh Helper DLL
T1199 - Trusted Relationship
T1091 - Replication Through Removable Media

MITREへのリンク →

Sandworm Team

Score: 0.59

Matched TTPs:

T1005 - Data from Local System
T1187 - Forced Authentication
T1558 - Steal or Forge Kerberos Tickets
T1049 - System Network Connections Discovery
T1199 - Trusted Relationship
T1091 - Replication Through Removable Media
T1566.002 - Spearphishing Link

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る