Trusted Design

Spear-phishing with URL to infect with Gozi/ifsb Trojan

概要

There is a campaign of spear-phishing where the bad actor uses an email crafted to resemble a Notice of Intended Prosecution claiming speeding or other moving violation and representing a police unit in the U.K. The template has numerous flaws such as this type of notice would not be sent via email. The bad actor keys on the recipients curiosity and entices them to view the photo evidence where the Gozi/ifsb Trojan is transferred.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

Spear Phishing Campaign Using “Sign in” Themed Emails Designed to Harvest User Credentials (score: 0.66)
NetTraveler Spear-Phishing Email Targets Diplomat of Uzbekistan (score: 0.65)
New Spear Phishing Campaign Pretends to be EFF (score: 0.65)
Uncovering the Seven Pointed Dagger (score: 0.64)
Hijacked Existing E-mail Thread - Ursnif (aka Gozi aka Gozi ISFB) Malware Phishing (score: 0.60)

このPulseに関連する脅威アクター (事実ベース)

Ember Bear

Score: 4.13

Matched TTPs:

T1491.002 - External Defacement

MITREへのリンク →

Sandworm Team

Score: 12.53

Matched TTPs:

T1491.002 - External Defacement
T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1584.005 - Botnet

MITREへのリンク →

Kimsuky

Score: 31.33

Matched TTPs:

T1036.007 - Double File Extension
T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1586.002 - Email Accounts
T1657 - Financial Theft
T1534 - Internal Spearphishing
T1566 - Phishing
T1593.001 - Social Media
T1656 - Impersonation
T1598 - Phishing for Information

MITREへのリンク →

Mustang Panda

Score: 15.71

Matched TTPs:

T1036.007 - Double File Extension
T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1586.002 - Email Accounts
T1027.007 - Dynamic API Resolution

MITREへのリンク →

LuminousMoth

Score: 5.29

Matched TTPs:

T1566.002 - Spearphishing Link
T1608.005 - Link Target

MITREへのリンク →

Confucius

Score: 5.47

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1221 - Template Injection

MITREへのリンク →

Sidewinder

Score: 10.99

Matched TTPs:

T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1598.002 - Spearphishing Attachment
T1124 - System Time Discovery

MITREへのリンク →

FIN7

Score: 8.76

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1608.005 - Link Target
T1124 - System Time Discovery

MITREへのリンク →

APT32

Score: 4.78

Matched TTPs:

T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment

MITREへのリンク →

Lazarus Group

Score: 11.57

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1027.007 - Dynamic API Resolution
T1124 - System Time Discovery
T1566.003 - Spearphishing via Service

MITREへのリンク →

Leviathan

Score: 8.61

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1586.002 - Email Accounts
T1534 - Internal Spearphishing

MITREへのリンク →

ZIRCONIUM

Score: 9.94

Matched TTPs:

T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1598 - Phishing for Information
T1124 - System Time Discovery

MITREへのリンク →

EXOTIC LILY

Score: 8.69

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1593.001 - Social Media
T1566.003 - Spearphishing via Service

MITREへのリンク →

Magic Hound

Score: 9.09

Matched TTPs:

T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1586.002 - Email Accounts
T1566.003 - Spearphishing via Service

MITREへのリンク →

OilRig

Score: 7.51

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1586.002 - Email Accounts
T1566.003 - Spearphishing via Service

MITREへのリンク →

Windshift

Score: 4.84

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT29

Score: 7.51

Matched TTPs:

T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1586.002 - Email Accounts
T1566.003 - Spearphishing via Service

MITREへのリンク →

Storm-1811

Score: 19.92

Matched TTPs:

T1566.002 - Spearphishing Link
T1048.002 - Exfiltration Over Asymmetric Encrypted Non-C2 Protocol
T1566.004 - Spearphishing Voice
T1667 - Email Bombing
T1656 - Impersonation
T1566.003 - Spearphishing via Service

MITREへのリンク →

Turla

Score: 4.04

Matched TTPs:

T1566.002 - Spearphishing Link
T1124 - System Time Discovery

MITREへのリンク →

TA577

Score: 4.11

Matched TTPs:

T1566.002 - Spearphishing Link
T1586.002 - Email Accounts

MITREへのリンク →

Patchwork

Score: 4.78

Matched TTPs:

T1566.002 - Spearphishing Link
T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment

MITREへのリンク →

APT42

Score: 4.48

Matched TTPs:

T1566.002 - Spearphishing Link
T1656 - Impersonation

MITREへのリンク →

Scattered Spider

Score: 15.59

Matched TTPs:

T1598.003 - Spearphishing Link
T1598.004 - Spearphishing Voice
T1657 - Financial Theft
T1656 - Impersonation
T1598 - Phishing for Information

MITREへのリンク →

Silent Librarian

Score: 6.30

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.005 - Link Target

MITREへのリンク →

APT28

Score: 16.43

Matched TTPs:

T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1586.002 - Email Accounts
T1048.002 - Exfiltration Over Asymmetric Encrypted Non-C2 Protocol
T1598 - Phishing for Information
T1221 - Template Injection

MITREへのリンク →

Star Blizzard

Score: 9.62

Matched TTPs:

T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1586.002 - Email Accounts
T1598.002 - Spearphishing Attachment

MITREへのリンク →

Moonstone Sleet

Score: 9.30

Matched TTPs:

T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1598 - Phishing for Information
T1566.003 - Spearphishing via Service

MITREへのリンク →

CURIUM

Score: 12.29

Matched TTPs:

T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1048.002 - Exfiltration Over Asymmetric Encrypted Non-C2 Protocol
T1124 - System Time Discovery
T1566.003 - Spearphishing via Service

MITREへのリンク →

Dragonfly

Score: 10.11

Matched TTPs:

T1598.003 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1598.002 - Spearphishing Attachment
T1221 - Template Injection

MITREへのリンク →

Saint Bear

Score: 3.91

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1656 - Impersonation

MITREへのリンク →

Tropic Trooper

Score: 4.03

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1221 - Template Injection

MITREへのリンク →

FIN6

Score: 3.40

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1566.003 - Spearphishing via Service

MITREへのリンク →

BRONZE BUTLER

Score: 3.47

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1124 - System Time Discovery

MITREへのリンク →

Gamaredon Group

Score: 7.65

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1534 - Internal Spearphishing
T1221 - Template Injection

MITREへのリンク →

Darkhotel

Score: 3.47

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1124 - System Time Discovery

MITREへのリンク →

Inception

Score: 4.03

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1221 - Template Injection

MITREへのリンク →

Ajax Security Team

Score: 3.40

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT41

Score: 3.91

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1656 - Impersonation

MITREへのリンク →

Higaisa

Score: 3.47

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1124 - System Time Discovery

MITREへのリンク →

Malteiro

Score: 3.40

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1657 - Financial Theft

MITREへのリンク →

SideCopy

Score: 4.50

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1598.002 - Spearphishing Attachment

MITREへのリンク →

IndigoZebra

Score: 3.54

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1586.002 - Email Accounts

MITREへのリンク →

DarkHydrus

Score: 4.03

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1221 - Template Injection

MITREへのリンク →

The White Company

Score: 3.47

Matched TTPs:

T1566.001 - Spearphishing Attachment
T1124 - System Time Discovery

MITREへのリンク →

HEXANE

Score: 6.29

Matched TTPs:

T1586.002 - Email Accounts
T1534 - Internal Spearphishing

MITREへのリンク →

LAPSUS$

Score: 9.83

Matched TTPs:

T1586.002 - Email Accounts
T1598.004 - Spearphishing Voice
T1656 - Impersonation

MITREへのリンク →

HAFNIUM

Score: 3.62

Matched TTPs:

T1584.005 - Botnet

MITREへのリンク →

Axiom

Score: 6.91

Matched TTPs:

T1584.005 - Botnet
T1566 - Phishing

MITREへのリンク →

Volt Typhoon

Score: 6.21

Matched TTPs:

T1584.005 - Botnet
T1124 - System Time Discovery

MITREへのリンク →

INC Ransom

Score: 5.81

Matched TTPs:

T1657 - Financial Theft
T1566 - Phishing

MITREへのリンク →

Contagious Interview

Score: 11.92

Matched TTPs:

T1657 - Financial Theft
T1593.001 - Social Media
T1656 - Impersonation
T1566.003 - Spearphishing via Service

MITREへのリンク →

AppleJeus

Score: 5.81

Matched TTPs:

T1657 - Financial Theft
T1566 - Phishing

MITREへのリンク →

Sea Turtle

Score: 3.29

Matched TTPs:

T1566 - Phishing

MITREへのリンク →

GOLD SOUTHFIELD

Score: 3.29

Matched TTPs:

T1566 - Phishing

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Kimsuky

Score: 0.81

Matched TTPs:

T1657 - Financial Theft
T1566 - Phishing
T1598 - Phishing for Information
T1586.002 - Email Accounts
T1593.001 - Social Media
T1036.007 - Double File Extension
T1534 - Internal Spearphishing
T1566.002 - Spearphishing Link
T1566.001 - Spearphishing Attachment
T1656 - Impersonation
T1598.003 - Spearphishing Link

MITREへのリンク →

Storm-1811

Score: 0.60

Matched TTPs:

T1566.003 - Spearphishing via Service
T1048.002 - Exfiltration Over Asymmetric Encrypted Non-C2 Protocol
T1667 - Email Bombing
T1566.004 - Spearphishing Voice
T1566.002 - Spearphishing Link
T1656 - Impersonation

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る