Trusted Design

JAR-16-20296A IOCs - DOMAINs, HOSTNAMES, URLs, FQDNs, HASHES ONLY

概要

ONLY URLS, DOMAIN, HOSTNAMES, FQDNs, HASHES from: JAR-16-20296A- TLP: WHITE Department of Homeland Security NCCIC US-CERT Reference Number: JAR-16-20296A Notification: This Indicator Bulletin is provided &quot;as is&quot; for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. The DHS does not endorse any commercial product or service, referenced in this bulletin or otherwise. This document is marked TLP: WHITE. Recipients may share TLP: WHITE information without restriction, but is subject to copyright controls. For more information on the Traffic Light Protocol, see http://www.us-cert.gov/tlp.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

JAR-16-20296 GRIZZLY STEPPE - URL and DNS Indicators (score: 0.54)
TA17-164A: HIDDEN COBRA (score: 0.49)
Missouri Office of Cyber Security URL Blacklist (score: 0.49)
TA17-164A - HIDDEN COBRA DDoS Botnet Infrastructure (score: 0.48)
Missouri Office of Cyber Security IP Blacklist (score: 0.48)

このPulseに関連する脅威アクター (事実ベース)

Volt Typhoon

Score: 19.98

Matched TTPs:

T1148 - HISTCONTROL
T1164 - Re-opened Applications
T1057 - Process Discovery
T1552.008 - Chat Messages
T1199 - Trusted Relationship
T1569.002 - Service Execution

MITREへのリンク →

Andariel

Score: 3.84

Matched TTPs:

T1171 - LLMNR/NBT-NS Poisoning and Relay

MITREへのリンク →

Magic Hound

Score: 19.75

Matched TTPs:

T1171 - LLMNR/NBT-NS Poisoning and Relay
T1098.007 - Additional Local or Domain Groups
T1588.001 - Malware
T1199 - Trusted Relationship
T1578.002 - Create Cloud Instance
T1098.002 - Additional Email Delegate Permissions
T1053.002 - At

MITREへのリンク →

HAFNIUM

Score: 7.69

Matched TTPs:

T1171 - LLMNR/NBT-NS Poisoning and Relay
T1552.008 - Chat Messages

MITREへのリンク →

APT28

Score: 15.68

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1057 - Process Discovery
T1199 - Trusted Relationship
T1200 - Hardware Additions
T1668 - Exclusive Control
T1566.003 - Spearphishing via Service

MITREへのリンク →

Storm-1811

Score: 5.99

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1199 - Trusted Relationship
T1578.002 - Create Cloud Instance

MITREへのリンク →

Contagious Interview

Score: 8.96

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1562.010 - Downgrade Attack
T1199 - Trusted Relationship
T1556 - Modify Authentication Process

MITREへのリンク →

APT1

Score: 8.40

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1199 - Trusted Relationship
T1668 - Exclusive Control
T1053.002 - At

MITREへのリンク →

APT32

Score: 12.35

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1588.001 - Malware
T1199 - Trusted Relationship
T1668 - Exclusive Control
T1027.007 - Dynamic API Resolution
T1556 - Modify Authentication Process

MITREへのリンク →

Kimsuky

Score: 17.06

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1588.001 - Malware
T1057 - Process Discovery
T1199 - Trusted Relationship
T1668 - Exclusive Control
T1008 - Fallback Channels
T1053.002 - At

MITREへのリンク →

Scattered Spider

Score: 6.50

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1199 - Trusted Relationship
T1557.002 - ARP Cache Poisoning

MITREへのリンク →

Dragonfly

Score: 9.14

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1199 - Trusted Relationship
T1578.002 - Create Cloud Instance
T1200 - Hardware Additions

MITREへのリンク →

Transparent Tribe

Score: 4.80

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1053.002 - At

MITREへのリンク →

ZIRCONIUM

Score: 3.61

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1588.001 - Malware

MITREへのリンク →

OilRig

Score: 9.65

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1199 - Trusted Relationship
T1592.002 - Software
T1556 - Modify Authentication Process

MITREへのリンク →

Mustang Panda

Score: 9.25

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1199 - Trusted Relationship
T1055.005 - Thread Local Storage
T1556 - Modify Authentication Process

MITREへのリンク →

Lazarus Group

Score: 17.55

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1588.001 - Malware
T1057 - Process Discovery
T1199 - Trusted Relationship
T1055.005 - Thread Local Storage
T1569.002 - Service Execution
T1556 - Modify Authentication Process

MITREへのリンク →

FIN7

Score: 10.15

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1588.001 - Malware
T1057 - Process Discovery
T1199 - Trusted Relationship
T1027.007 - Dynamic API Resolution

MITREへのリンク →

APT38

Score: 4.76

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1199 - Trusted Relationship
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Gamaredon Group

Score: 13.90

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1562.010 - Downgrade Attack
T1199 - Trusted Relationship
T1061 - Graphical User Interface
T1200 - Hardware Additions

MITREへのリンク →

Winter Vivern

Score: 3.61

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1588.001 - Malware

MITREへのリンク →

Moonstone Sleet

Score: 7.20

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1057 - Process Discovery
T1027.007 - Dynamic API Resolution

MITREへのリンク →

BITTER

Score: 4.46

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1588.001 - Malware
T1199 - Trusted Relationship

MITREへのリンク →

Sandworm Team

Score: 6.90

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1199 - Trusted Relationship
T1111 - Multi-Factor Authentication Interception

MITREへのリンク →

Aquatic Panda

Score: 5.69

Matched TTPs:

T1588.001 - Malware
T1199 - Trusted Relationship
T1668 - Exclusive Control

MITREへのリンク →

FIN13

Score: 8.62

Matched TTPs:

T1588.001 - Malware
T1199 - Trusted Relationship
T1668 - Exclusive Control
T1569.002 - Service Execution

MITREへのリンク →

Wizard Spider

Score: 10.83

Matched TTPs:

T1588.001 - Malware
T1199 - Trusted Relationship
T1668 - Exclusive Control
T1027.007 - Dynamic API Resolution
T1556 - Modify Authentication Process

MITREへのリンク →

FIN6

Score: 8.09

Matched TTPs:

T1588.001 - Malware
T1199 - Trusted Relationship
T1027.007 - Dynamic API Resolution
T1556 - Modify Authentication Process

MITREへのリンク →

Higaisa

Score: 5.02

Matched TTPs:

T1588.001 - Malware
T1569.002 - Service Execution

MITREへのリンク →

APT41

Score: 11.37

Matched TTPs:

T1588.001 - Malware
T1199 - Trusted Relationship
T1668 - Exclusive Control
T1027.007 - Dynamic API Resolution
T1008 - Fallback Channels

MITREへのリンク →

BlackByte

Score: 6.24

Matched TTPs:

T1562.010 - Downgrade Attack
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Indrik Spider

Score: 3.84

Matched TTPs:

T1552.008 - Chat Messages

MITREへのリンク →

Turla

Score: 3.78

Matched TTPs:

T1199 - Trusted Relationship
T1569.002 - Service Execution

MITREへのリンク →

Inception

Score: 4.00

Matched TTPs:

T1199 - Trusted Relationship
T1200 - Hardware Additions

MITREへのリンク →

LAPSUS$

Score: 4.98

Matched TTPs:

T1199 - Trusted Relationship
T1557.002 - ARP Cache Poisoning

MITREへのリンク →

APT29

Score: 5.39

Matched TTPs:

T1199 - Trusted Relationship
T1218.009 - Regsvcs/Regasm

MITREへのリンク →

Medusa Group

Score: 3.25

Matched TTPs:

T1199 - Trusted Relationship
T1027.007 - Dynamic API Resolution

MITREへのリンク →

BRONZE BUTLER

Score: 4.13

Matched TTPs:

T1199 - Trusted Relationship
T1008 - Fallback Channels

MITREへのリンク →

FIN8

Score: 3.60

Matched TTPs:

T1199 - Trusted Relationship
T1556 - Modify Authentication Process

MITREへのリンク →

APT39

Score: 6.18

Matched TTPs:

T1199 - Trusted Relationship
T1027.007 - Dynamic API Resolution
T1569.002 - Service Execution

MITREへのリンク →

GALLIUM

Score: 3.60

Matched TTPs:

T1199 - Trusted Relationship
T1668 - Exclusive Control

MITREへのリンク →

Patchwork

Score: 4.13

Matched TTPs:

T1199 - Trusted Relationship
T1008 - Fallback Channels

MITREへのリンク →

Ke3chang

Score: 3.25

Matched TTPs:

T1199 - Trusted Relationship
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Thrip

Score: 3.60

Matched TTPs:

T1199 - Trusted Relationship
T1556 - Modify Authentication Process

MITREへのリンク →

Lotus Blossom

Score: 3.78

Matched TTPs:

T1199 - Trusted Relationship
T1569.002 - Service Execution

MITREへのリンク →

INC Ransom

Score: 3.25

Matched TTPs:

T1199 - Trusted Relationship
T1027.007 - Dynamic API Resolution

MITREへのリンク →

APT33

Score: 3.60

Matched TTPs:

T1199 - Trusted Relationship
T1556 - Modify Authentication Process

MITREへのリンク →

Silence

Score: 3.25

Matched TTPs:

T1199 - Trusted Relationship
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Chimera

Score: 5.99

Matched TTPs:

T1199 - Trusted Relationship
T1668 - Exclusive Control
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Salt Typhoon

Score: 3.60

Matched TTPs:

T1199 - Trusted Relationship
T1556 - Modify Authentication Process

MITREへのリンク →

Blue Mockingbird

Score: 3.25

Matched TTPs:

T1199 - Trusted Relationship
T1027.007 - Dynamic API Resolution

MITREへのリンク →

DarkHydrus

Score: 4.00

Matched TTPs:

T1199 - Trusted Relationship
T1200 - Hardware Additions

MITREへのリンク →

APT3

Score: 3.62

Matched TTPs:

T1578.002 - Create Cloud Instance

MITREへのリンク →

Confucius

Score: 3.15

Matched TTPs:

T1200 - Hardware Additions

MITREへのリンク →

Tropic Trooper

Score: 3.15

Matched TTPs:

T1200 - Hardware Additions

MITREへのリンク →

Equation

Score: 4.13

Matched TTPs:

T1130 - Install Root Certificate

MITREへのリンク →

Strider

Score: 7.06

Matched TTPs:

T1130 - Install Root Certificate
T1569.002 - Service Execution

MITREへのリンク →

Velvet Ant

Score: 9.46

Matched TTPs:

T1027.007 - Dynamic API Resolution
T1569.002 - Service Execution
T1566.003 - Spearphishing via Service

MITREへのリンク →

Rocke

Score: 3.29

Matched TTPs:

T1008 - Fallback Channels

MITREへのリンク →

RTM

Score: 3.29

Matched TTPs:

T1008 - Fallback Channels

MITREへのリンク →

SideCopy

Score: 3.29

Matched TTPs:

T1053.002 - At

MITREへのリンク →

Mustard Tempest

Score: 3.29

Matched TTPs:

T1053.002 - At

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Volt Typhoon

Score: 0.78

Matched TTPs:

T1552.008 - Chat Messages
T1164 - Re-opened Applications
T1199 - Trusted Relationship
T1057 - Process Discovery
T1569.002 - Service Execution
T1148 - HISTCONTROL

MITREへのリンク →

Magic Hound

Score: 0.77

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1199 - Trusted Relationship
T1098.002 - Additional Email Delegate Permissions
T1171 - LLMNR/NBT-NS Poisoning and Relay
T1578.002 - Create Cloud Instance
T1053.002 - At
T1588.001 - Malware

MITREへのリンク →

Lazarus Group

Score: 0.69

Matched TTPs:

T1055.005 - Thread Local Storage
T1098.007 - Additional Local or Domain Groups
T1199 - Trusted Relationship
T1057 - Process Discovery
T1569.002 - Service Execution
T1588.001 - Malware
T1556 - Modify Authentication Process

MITREへのリンク →

Kimsuky

Score: 0.66

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1199 - Trusted Relationship
T1057 - Process Discovery
T1668 - Exclusive Control
T1053.002 - At
T1588.001 - Malware
T1008 - Fallback Channels

MITREへのリンク →

APT28

Score: 0.63

Matched TTPs:

T1098.007 - Additional Local or Domain Groups
T1199 - Trusted Relationship
T1057 - Process Discovery
T1200 - Hardware Additions
T1668 - Exclusive Control
T1566.003 - Spearphishing via Service

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る