Trusted Design

Operation Toohash (2014)

概要

The attackers modus operandi is to carry out spear phishing using a malicious Microsoft Office document as an attachment. The attackers do not choose their targets indiscriminately, which we derive from the fact that they sent specially crafted CV documents, probably to human resources management employees. Naturally, the recipients are inclined to open such documents on a daily base.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

このPulseに関連する脅威アクター (事実ベース)

Volt Typhoon

Score: 6.21
Matched TTPs:
  • T1584.008 - Network Devices
  • T1124 - System Time Discovery
MITREへのリンク →

APT28

Score: 25.86
Matched TTPs:
  • T1584.008 - Network Devices
  • T1559.002 - Dynamic Data Exchange
  • T1204.002 - Malicious File
  • T1598.003 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
  • T1598 - Phishing for Information
  • T1221 - Template Injection
  • T1550.002 - Pass the Hash
  • T1137.002 - Office Test
MITREへのリンク →

ZIRCONIUM

Score: 13.56
Matched TTPs:
  • T1584.008 - Network Devices
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1598 - Phishing for Information
  • T1124 - System Time Discovery
MITREへのリンク →

Leviathan

Score: 14.59
Matched TTPs:
  • T1584.008 - Network Devices
  • T1559.002 - Dynamic Data Exchange
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1534 - Internal Spearphishing
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

Cobalt Group

Score: 7.35
Matched TTPs:
  • T1559.002 - Dynamic Data Exchange
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

FIN7

Score: 8.45
Matched TTPs:
  • T1559.002 - Dynamic Data Exchange
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1124 - System Time Discovery
MITREへのリンク →

MuddyWater

Score: 11.89
Matched TTPs:
  • T1559.002 - Dynamic Data Exchange
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1137.001 - Office Template Macros
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

Sidewinder

Score: 16.02
Matched TTPs:
  • T1559.002 - Dynamic Data Exchange
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1598.002 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
  • T1124 - System Time Discovery
MITREへのリンク →

APT37

Score: 5.90
Matched TTPs:
  • T1559.002 - Dynamic Data Exchange
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

Gallmaker

Score: 4.41
Matched TTPs:
  • T1559.002 - Dynamic Data Exchange
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
MITREへのリンク →

BITTER

Score: 9.52
Matched TTPs:
  • T1559.002 - Dynamic Data Exchange
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1573 - Encrypted Channel
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

TA505

Score: 5.86
Matched TTPs:
  • T1559.002 - Dynamic Data Exchange
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
MITREへのリンク →

Patchwork

Score: 9.81
Matched TTPs:
  • T1559.002 - Dynamic Data Exchange
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

APT12

Score: 3.16
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

Kimsuky

Score: 25.54
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1589.003 - Employee Names
  • T1534 - Internal Spearphishing
  • T1566 - Phishing
  • T1656 - Impersonation
  • T1598 - Phishing for Information
  • T1550.002 - Pass the Hash
MITREへのリンク →

Machete

Score: 3.11
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
MITREへのリンク →

Elderwood

Score: 4.60
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

Transparent Tribe

Score: 4.60
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

Dragonfly

Score: 12.39
Matched TTPs:
  • T1204.002 - Malicious File
  • T1598.003 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1598.002 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
  • T1221 - Template Injection
MITREへのリンク →

Contagious Interview

Score: 6.35
Matched TTPs:
  • T1204.002 - Malicious File
  • T1656 - Impersonation
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

CURIUM

Score: 9.24
Matched TTPs:
  • T1204.002 - Malicious File
  • T1598.003 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1124 - System Time Discovery
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Tropic Trooper

Score: 9.93
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1573 - Encrypted Channel
  • T1203 - Exploitation for Client Execution
  • T1221 - Template Injection
MITREへのリンク →

Dark Caracal

Score: 3.31
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

RedCurl

Score: 3.11
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
MITREへのリンク →

DarkHydrus

Score: 4.81
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1221 - Template Injection
MITREへのリンク →

HEXANE

Score: 4.41
Matched TTPs:
  • T1204.002 - Malicious File
  • T1534 - Internal Spearphishing
MITREへのリンク →

FIN8

Score: 3.11
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
MITREへのリンク →

Threat Group-3390

Score: 3.16
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

LazyScripter

Score: 3.11
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
MITREへのリンク →

PROMETHIUM

Score: 4.92
Matched TTPs:
  • T1204.002 - Malicious File
  • T1205.001 - Port Knocking
MITREへのリンク →

APT39

Score: 3.11
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
MITREへのリンク →

Star Blizzard

Score: 7.74
Matched TTPs:
  • T1204.002 - Malicious File
  • T1598.003 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1598.002 - Spearphishing Attachment
MITREへのリンク →

Higaisa

Score: 5.75
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
  • T1124 - System Time Discovery
MITREへのリンク →

Wizard Spider

Score: 5.86
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1550.002 - Pass the Hash
MITREへのリンク →

OilRig

Score: 7.13
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Sandworm Team

Score: 10.91
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1589.003 - Employee Names
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

Magic Hound

Score: 10.84
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1573 - Encrypted Channel
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

FIN4

Score: 3.11
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
MITREへのリンク →

Storm-1811

Score: 16.87
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.004 - Spearphishing Voice
  • T1667 - Email Bombing
  • T1656 - Impersonation
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Inception

Score: 6.31
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
  • T1221 - Template Injection
MITREへのリンク →

EXOTIC LILY

Score: 7.13
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Ajax Security Team

Score: 4.19
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Saint Bear

Score: 6.19
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
  • T1656 - Impersonation
MITREへのリンク →

Lazarus Group

Score: 9.72
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
  • T1124 - System Time Discovery
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

FIN6

Score: 4.19
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

TA459

Score: 3.16
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

Moonstone Sleet

Score: 10.08
Matched TTPs:
  • T1204.002 - Malicious File
  • T1598.003 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1598 - Phishing for Information
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

TA2541

Score: 3.11
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
MITREへのリンク →

SideCopy

Score: 5.28
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1598.002 - Spearphishing Attachment
MITREへのリンク →

Mofang

Score: 3.11
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
MITREへのリンク →

Tonto Team

Score: 3.16
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

Andariel

Score: 3.16
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

BRONZE BUTLER

Score: 9.59
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1550.003 - Pass the Ticket
  • T1203 - Exploitation for Client Execution
  • T1124 - System Time Discovery
MITREへのリンク →

Mustang Panda

Score: 7.06
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

Molerats

Score: 3.11
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
MITREへのリンク →

admin@338

Score: 3.16
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

Gamaredon Group

Score: 8.44
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1534 - Internal Spearphishing
  • T1221 - Template Injection
MITREへのリンク →

Darkhotel

Score: 5.75
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
  • T1124 - System Time Discovery
MITREへのリンク →

APT32

Score: 13.65
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1550.003 - Pass the Ticket
  • T1203 - Exploitation for Client Execution
  • T1550.002 - Pass the Hash
MITREへのリンク →

The White Company

Score: 5.75
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
  • T1124 - System Time Discovery
MITREへのリンク →

APT33

Score: 4.60
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

APT29

Score: 14.59
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1550.003 - Pass the Ticket
  • T1573 - Encrypted Channel
  • T1203 - Exploitation for Client Execution
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Confucius

Score: 7.75
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
  • T1221 - Template Injection
MITREへのリンク →

BlackTech

Score: 4.60
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

Windshift

Score: 5.63
Matched TTPs:
  • T1204.002 - Malicious File
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

APT1

Score: 5.07
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1550.002 - Pass the Hash
MITREへのリンク →

Turla

Score: 4.04
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1124 - System Time Discovery
MITREへのリンク →

APT42

Score: 4.48
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1656 - Impersonation
MITREへのリンク →

Scattered Spider

Score: 17.20
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1598.004 - Spearphishing Voice
  • T1204 - User Execution
  • T1656 - Impersonation
  • T1598 - Phishing for Information
MITREへのリンク →

Silent Librarian

Score: 6.30
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1589.003 - Employee Names
MITREへのリンク →

APT41

Score: 8.15
Matched TTPs:
  • T1566.001 - Spearphishing Attachment
  • T1203 - Exploitation for Client Execution
  • T1656 - Impersonation
  • T1550.002 - Pass the Hash
MITREへのリンク →

LAPSUS$

Score: 11.30
Matched TTPs:
  • T1598.004 - Spearphishing Voice
  • T1204 - User Execution
  • T1656 - Impersonation
MITREへのリンク →

UNC3886

Score: 8.22
Matched TTPs:
  • T1205.001 - Port Knocking
  • T1203 - Exploitation for Client Execution
  • T1124 - System Time Discovery
MITREへのリンク →

INC Ransom

Score: 3.29
Matched TTPs:
  • T1566 - Phishing
MITREへのリンク →

Sea Turtle

Score: 4.78
Matched TTPs:
  • T1566 - Phishing
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

Axiom

Score: 4.78
Matched TTPs:
  • T1566 - Phishing
  • T1203 - Exploitation for Client Execution
MITREへのリンク →

AppleJeus

Score: 3.29
Matched TTPs:
  • T1566 - Phishing
MITREへのリンク →

GOLD SOUTHFIELD

Score: 3.29
Matched TTPs:
  • T1566 - Phishing
MITREへのリンク →

Ember Bear

Score: 4.24
Matched TTPs:
  • T1203 - Exploitation for Client Execution
  • T1550.002 - Pass the Hash
MITREへのリンク →

Equation

Score: 4.13
Matched TTPs:
  • T1564.005 - Hidden File System
MITREへのリンク →

Strider

Score: 4.13
Matched TTPs:
  • T1564.005 - Hidden File System
MITREへのリンク →

Chimera

Score: 5.34
Matched TTPs:
  • T1550.002 - Pass the Hash
  • T1124 - System Time Discovery
MITREへのリンク →

Medusa Group

Score: 4.54
Matched TTPs:
  • T1218.014 - MMC
MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

APT28

Score: 0.79
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1559.002 - Dynamic Data Exchange
  • T1137.002 - Office Test
  • T1566.001 - Spearphishing Attachment
  • T1221 - Template Injection
  • T1203 - Exploitation for Client Execution
  • T1598 - Phishing for Information
  • T1550.002 - Pass the Hash
  • T1204.002 - Malicious File
  • T1584.008 - Network Devices
MITREへのリンク →

Kimsuky

Score: 0.75
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1656 - Impersonation
  • T1566 - Phishing
  • T1566.002 - Spearphishing Link
  • T1566.001 - Spearphishing Attachment
  • T1534 - Internal Spearphishing
  • T1598 - Phishing for Information
  • T1550.002 - Pass the Hash
  • T1204.002 - Malicious File
  • T1589.003 - Employee Names
MITREへのリンク →

Storm-1811

Score: 0.61
Matched TTPs:
  • T1656 - Impersonation
  • T1566.002 - Spearphishing Link
  • T1566.004 - Spearphishing Voice
  • T1566.003 - Spearphishing via Service
  • T1667 - Email Bombing
  • T1204.002 - Malicious File
MITREへのリンク →

Scattered Spider

Score: 0.55
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1656 - Impersonation
  • T1598.004 - Spearphishing Voice
  • T1204 - User Execution
  • T1598 - Phishing for Information
MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

← Pulse一覧に戻る