Trusted Design

Without Necurs, Locky Struggles

概要

Locky has been a devastating force for the last year in the spam and ransomware landscape. The Locky variant of ransomware has been responsible for huge amounts of spam messages being sent on a daily basis. The main driver behind this traffic is the Necurs botnet. This botnet is responsible for the majority of Locky and Dridex activity. Periodically Necurs goes offline and during these periods we typically see Locky activity decrease drastically. One of these periods is currently ongoing.

Created: 2026-02-23

Indicators

類似Pulses

Necurs Botnet Returns With Updated Locky Ransomware In Tow (score: 0.82)
Necurs Botnet Malspam still pushing Locky ransomware (score: 0.80)
Necurs Botnet malspam continues pushing Locky (score: 0.77)
Malware-Traffic-Analysis.net - 2017-10-02 - Necurs Botnet malspam sto;; pushing .ykcol&quot; variant Locky ransomware (score: 0.73)
Necurs Botnet malspam pushing .ykcol&quot; variant Locky ransomware (score: 0.70)

このPulseに関連する脅威アクター (事実ベース)

Kimsuky

Score: 11.01

Matched TTPs:

T1583 - Acquire Infrastructure
T1657 - Financial Theft
T1583.006 - Web Services
T1598 - Phishing for Information

MITREへのリンク →

Sea Turtle

Score: 3.03

Matched TTPs:

T1583 - Acquire Infrastructure

MITREへのリンク →

Ember Bear

Score: 3.03

Matched TTPs:

T1583 - Acquire Infrastructure

MITREへのリンク →

Indrik Spider

Score: 3.03

Matched TTPs:

T1583 - Acquire Infrastructure

MITREへのリンク →

Agrius

Score: 3.03

Matched TTPs:

T1583 - Acquire Infrastructure

MITREへのリンク →

Contagious Interview

Score: 7.57

Matched TTPs:

T1583 - Acquire Infrastructure
T1657 - Financial Theft
T1583.006 - Web Services

MITREへのリンク →

Sandworm Team

Score: 6.66

Matched TTPs:

T1583 - Acquire Infrastructure
T1584.005 - Botnet

MITREへのリンク →

Star Blizzard

Score: 3.03

Matched TTPs:

T1583 - Acquire Infrastructure

MITREへのリンク →

HAFNIUM

Score: 9.48

Matched TTPs:

T1583.005 - Botnet
T1584.005 - Botnet
T1583.006 - Web Services

MITREへのリンク →

APT5

Score: 3.84

Matched TTPs:

T1583.005 - Botnet

MITREへのリンク →

Ke3chang

Score: 3.84

Matched TTPs:

T1583.005 - Botnet

MITREへのリンク →

APT38

Score: 4.54

Matched TTPs:

T1480.002 - Mutual Exclusion

MITREへのリンク →

APT39

Score: 7.06

Matched TTPs:

T1553.006 - Code Signing Policy Modification
T1090.001 - Internal Proxy

MITREへのリンク →

Turla

Score: 9.07

Matched TTPs:

T1553.006 - Code Signing Policy Modification
T1583.006 - Web Services
T1090.001 - Internal Proxy

MITREへのリンク →

Axiom

Score: 3.62

Matched TTPs:

T1584.005 - Botnet

MITREへのリンク →

Volt Typhoon

Score: 6.55

Matched TTPs:

T1584.005 - Botnet
T1090.001 - Internal Proxy

MITREへのリンク →

FIN13

Score: 5.45

Matched TTPs:

T1657 - Financial Theft
T1090.001 - Internal Proxy

MITREへのリンク →

Akira

Score: 6.66

Matched TTPs:

T1657 - Financial Theft
T1531 - Account Access Removal

MITREへのリンク →

Scattered Spider

Score: 5.96

Matched TTPs:

T1657 - Financial Theft
T1598 - Phishing for Information

MITREへのリンク →

Medusa Group

Score: 9.07

Matched TTPs:

T1657 - Financial Theft
T1583.006 - Web Services
T1650 - Acquire Access

MITREへのリンク →

Mustang Panda

Score: 6.55

Matched TTPs:

T1583.006 - Web Services
T1678 - Delay Execution

MITREへのリンク →

ZIRCONIUM

Score: 5.45

Matched TTPs:

T1583.006 - Web Services
T1598 - Phishing for Information

MITREへのリンク →

APT28

Score: 5.45

Matched TTPs:

T1583.006 - Web Services
T1598 - Phishing for Information

MITREへのリンク →

Lazarus Group

Score: 4.94

Matched TTPs:

T1583.006 - Web Services
T1090.001 - Internal Proxy

MITREへのリンク →

LAPSUS$

Score: 4.13

Matched TTPs:

T1531 - Account Access Removal

MITREへのリンク →

Moonstone Sleet

Score: 3.44

Matched TTPs:

T1598 - Phishing for Information

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Kimsuky

Score: 0.79

Matched TTPs:

T1657 - Financial Theft
T1583 - Acquire Infrastructure
T1583.006 - Web Services
T1598 - Phishing for Information

MITREへのリンク →

HAFNIUM

Score: 0.70

Matched TTPs:

T1584.005 - Botnet
T1583.006 - Web Services
T1583.005 - Botnet

MITREへのリンク →

Medusa Group

Score: 0.70

Matched TTPs:

T1657 - Financial Theft
T1583.006 - Web Services
T1650 - Acquire Access

MITREへのリンク →

Turla

Score: 0.69

Matched TTPs:

T1090.001 - Internal Proxy
T1583.006 - Web Services
T1553.006 - Code Signing Policy Modification

MITREへのリンク →

Contagious Interview

Score: 0.58

Matched TTPs:

T1657 - Financial Theft
T1583 - Acquire Infrastructure
T1583.006 - Web Services

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る