Trusted Design

US Banks Targeted with Trickbot Trojan - FlashPoint

概要

The Necurs botnet has begun delivering the Trickbot banking Trojan to financial institutions in the United States, a sign of increasingly larger and more complex attacks on the industry. Trickbot, which specifically threatens businesses in the financial sector, has been behind man-in-the-browser (MitB) attacks since 2016. Until now, its webinject configuration was only used to hit organizations outside the US. The latest iteration is fueled by the Necurs botnet and was developed to hit 50 additional banks including 13 companies based in the US. Necurs, one of the largest spamming botnets in the world.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

Tale of the Two Payloads – TrickBot and Nitol (score: 0.81)
TrickBot Is Hand-Picking Private Banks (score: 0.70)
Android Trojan GM Bot is evolving and targeting more than 50 banks worldwide (score: 0.68)
Necurs Botnet Fuels Massive Spam Campaigns Spreading Jaff Ransomware (score: 0.66)
A couple of months with Trickbots (score: 0.66)

このPulseに関連する脅威アクター (事実ベース)

Ember Bear

Score: 4.13

Matched TTPs:

T1491.002 - External Defacement

MITREへのリンク →

Sandworm Team

Score: 21.15

Matched TTPs:

T1491.002 - External Defacement
T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1584.005 - Botnet
T1199 - Trusted Relationship
T1593 - Search Open Websites/Domains
T1195.002 - Compromise Software Supply Chain

MITREへのリンク →

Scattered Spider

Score: 9.11

Matched TTPs:

T1598.003 - Spearphishing Link
T1657 - Financial Theft
T1556.009 - Conditional Access Policies

MITREへのリンク →

Mustang Panda

Score: 14.27

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1608 - Stage Capabilities
T1583.006 - Web Services
T1593 - Search Open Websites/Domains

MITREへのリンク →

ZIRCONIUM

Score: 4.47

Matched TTPs:

T1598.003 - Spearphishing Link
T1583.006 - Web Services

MITREへのリンク →

APT32

Score: 10.67

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1055 - Process Injection
T1583.006 - Web Services
T1189 - Drive-by Compromise

MITREへのリンク →

Kimsuky

Score: 14.71

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1055 - Process Injection
T1657 - Financial Theft
T1583.006 - Web Services
T1593 - Search Open Websites/Domains

MITREへのリンク →

Magic Hound

Score: 8.76

Matched TTPs:

T1598.003 - Spearphishing Link
T1583.006 - Web Services
T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT28

Score: 18.06

Matched TTPs:

T1598.003 - Spearphishing Link
T1583.006 - Web Services
T1199 - Trusted Relationship
T1189 - Drive-by Compromise
T1498 - Network Denial of Service
T1137.002 - Office Test

MITREへのリンク →

Star Blizzard

Score: 7.72

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1593 - Search Open Websites/Domains

MITREへのリンク →

Moonstone Sleet

Score: 9.88

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1195.002 - Compromise Software Supply Chain
T1566.003 - Spearphishing via Service

MITREへのリンク →

CURIUM

Score: 10.37

Matched TTPs:

T1598.003 - Spearphishing Link
T1584.006 - Web Services
T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

Dragonfly

Score: 7.15

Matched TTPs:

T1598.003 - Spearphishing Link
T1195.002 - Compromise Software Supply Chain
T1189 - Drive-by Compromise

MITREへのリンク →

Patchwork

Score: 4.22

Matched TTPs:

T1598.003 - Spearphishing Link
T1189 - Drive-by Compromise

MITREへのリンク →

HAFNIUM

Score: 12.22

Matched TTPs:

T1583.005 - Botnet
T1584.005 - Botnet
T1583.006 - Web Services
T1199 - Trusted Relationship

MITREへのリンク →

APT5

Score: 6.30

Matched TTPs:

T1583.005 - Botnet
T1055 - Process Injection

MITREへのリンク →

Ke3chang

Score: 3.84

Matched TTPs:

T1583.005 - Botnet

MITREへのリンク →

TA2541

Score: 6.44

Matched TTPs:

T1608.001 - Upload Malware
T1055 - Process Injection
T1583.006 - Web Services

MITREへのリンク →

Earth Lusca

Score: 9.37

Matched TTPs:

T1608.001 - Upload Malware
T1583.006 - Web Services
T1584.006 - Web Services
T1189 - Drive-by Compromise

MITREへのリンク →

Mustard Tempest

Score: 3.74

Matched TTPs:

T1608.001 - Upload Malware
T1189 - Drive-by Compromise

MITREへのリンク →

OilRig

Score: 4.50

Matched TTPs:

T1608.001 - Upload Malware
T1566.003 - Spearphishing via Service

MITREへのリンク →

LazyScripter

Score: 3.99

Matched TTPs:

T1608.001 - Upload Malware
T1583.006 - Web Services

MITREへのリンク →

Gamaredon Group

Score: 14.83

Matched TTPs:

T1608.001 - Upload Malware
T1055 - Process Injection
T1480 - Execution Guardrails
T1583.006 - Web Services
T1001 - Data Obfuscation

MITREへのリンク →

Threat Group-3390

Score: 9.41

Matched TTPs:

T1608.001 - Upload Malware
T1199 - Trusted Relationship
T1195.002 - Compromise Software Supply Chain
T1189 - Drive-by Compromise

MITREへのリンク →

BlackByte

Score: 8.28

Matched TTPs:

T1608.001 - Upload Malware
T1055 - Process Injection
T1480 - Execution Guardrails

MITREへのリンク →

Saint Bear

Score: 3.99

Matched TTPs:

T1608.001 - Upload Malware
T1583.006 - Web Services

MITREへのリンク →

Contagious Interview

Score: 16.16

Matched TTPs:

T1608.001 - Upload Malware
T1657 - Financial Theft
T1480 - Execution Guardrails
T1583.006 - Web Services
T1593 - Search Open Websites/Domains
T1566.003 - Spearphishing via Service

MITREへのリンク →

FIN7

Score: 11.45

Matched TTPs:

T1608.001 - Upload Malware
T1674 - Input Injection
T1583.006 - Web Services
T1195.002 - Compromise Software Supply Chain

MITREへのリンク →

EXOTIC LILY

Score: 4.50

Matched TTPs:

T1608.001 - Upload Malware
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT38

Score: 4.22

Matched TTPs:

T1055 - Process Injection
T1189 - Drive-by Compromise

MITREへのリンク →

Cobalt Group

Score: 5.39

Matched TTPs:

T1055 - Process Injection
T1195.002 - Compromise Software Supply Chain

MITREへのリンク →

APT37

Score: 4.22

Matched TTPs:

T1055 - Process Injection
T1189 - Drive-by Compromise

MITREへのリンク →

PLATINUM

Score: 4.22

Matched TTPs:

T1055 - Process Injection
T1189 - Drive-by Compromise

MITREへのリンク →

APT41

Score: 5.39

Matched TTPs:

T1055 - Process Injection
T1195.002 - Compromise Software Supply Chain

MITREへのリンク →

Turla

Score: 9.86

Matched TTPs:

T1055 - Process Injection
T1583.006 - Web Services
T1584.006 - Web Services
T1189 - Drive-by Compromise

MITREへのリンク →

Axiom

Score: 9.93

Matched TTPs:

T1584.005 - Botnet
T1189 - Drive-by Compromise
T1001.002 - Steganography

MITREへのリンク →

Volt Typhoon

Score: 6.91

Matched TTPs:

T1584.005 - Botnet
T1593 - Search Open Websites/Domains

MITREへのリンク →

Storm-0501

Score: 6.66

Matched TTPs:

T1657 - Financial Theft
T1556.009 - Conditional Access Policies

MITREへのリンク →

Medusa Group

Score: 4.54

Matched TTPs:

T1657 - Financial Theft
T1583.006 - Web Services

MITREへのリンク →

APT29

Score: 7.28

Matched TTPs:

T1583.006 - Web Services
T1199 - Trusted Relationship
T1566.003 - Spearphishing via Service

MITREへのリンク →

Lazarus Group

Score: 6.30

Matched TTPs:

T1583.006 - Web Services
T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

POLONIUM

Score: 4.76

Matched TTPs:

T1583.006 - Web Services
T1199 - Trusted Relationship

MITREへのリンク →

GOLD SOUTHFIELD

Score: 5.67

Matched TTPs:

T1199 - Trusted Relationship
T1195.002 - Compromise Software Supply Chain

MITREへのリンク →

Winter Vivern

Score: 5.39

Matched TTPs:

T1584.006 - Web Services
T1189 - Drive-by Compromise

MITREへのリンク →

Daggerfly

Score: 4.69

Matched TTPs:

T1195.002 - Compromise Software Supply Chain
T1189 - Drive-by Compromise

MITREへのリンク →

Windshift

Score: 4.29

Matched TTPs:

T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

Dark Caracal

Score: 4.29

Matched TTPs:

T1189 - Drive-by Compromise
T1566.003 - Spearphishing via Service

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Sandworm Team

Score: 0.83

Matched TTPs:

T1608.001 - Upload Malware
T1199 - Trusted Relationship
T1195.002 - Compromise Software Supply Chain
T1598.003 - Spearphishing Link
T1584.005 - Botnet
T1491.002 - External Defacement
T1593 - Search Open Websites/Domains

MITREへのリンク →

APT28

Score: 0.70

Matched TTPs:

T1189 - Drive-by Compromise
T1498 - Network Denial of Service
T1598.003 - Spearphishing Link
T1199 - Trusted Relationship
T1583.006 - Web Services
T1137.002 - Office Test

MITREへのリンク →

Contagious Interview

Score: 0.61

Matched TTPs:

T1566.003 - Spearphishing via Service
T1608.001 - Upload Malware
T1657 - Financial Theft
T1480 - Execution Guardrails
T1583.006 - Web Services
T1593 - Search Open Websites/Domains

MITREへのリンク →

Mustang Panda

Score: 0.59

Matched TTPs:

T1608.001 - Upload Malware
T1608 - Stage Capabilities
T1593 - Search Open Websites/Domains
T1598.003 - Spearphishing Link
T1583.006 - Web Services

MITREへのリンク →

Gamaredon Group

Score: 0.58

Matched TTPs:

T1608.001 - Upload Malware
T1055 - Process Injection
T1480 - Execution Guardrails
T1001 - Data Obfuscation
T1583.006 - Web Services

MITREへのリンク →

Kimsuky

Score: 0.57

Matched TTPs:

T1608.001 - Upload Malware
T1657 - Financial Theft
T1055 - Process Injection
T1593 - Search Open Websites/Domains
T1598.003 - Spearphishing Link
T1583.006 - Web Services

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る