Trusted Design

Drixed / Dridex - Sophisticated Banking Malware

概要

Dridex is a banking trojan, that evolved from earlier Cridex and Bugat variants. Small businesses are typical Dridex targets for banking theft, though intrusions can become elaborate and continue for months. There are likely links between some of the criminal organisations using Dridex, and those using Carbanak for multi-million dollar thefts from large banks. It is used by a small linked set of very organised criminal groups, and has made attackers millions of dollars. Dridex is a capable backdoor in itself, with multiple layers of command and contorl, though further malware is typically later downloaded to enable the theft of banking credentials. Currently, it is mostly delivered by malicious Macros.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

このPulseに関連する脅威アクター (事実ベース)

BlackTech

Score: 3.66
Matched TTPs:
  • T1543.003 - Windows Service
  • T1199 - Trusted Relationship
  • T1027.018 - Invisible Unicode
MITREへのリンク →

MuddyWater

Score: 6.05
Matched TTPs:
  • T1543.003 - Windows Service
  • T1199 - Trusted Relationship
  • T1547.002 - Authentication Package
  • T1027.018 - Invisible Unicode
MITREへのリンク →

LuminousMoth

Score: 6.11
Matched TTPs:
  • T1543.003 - Windows Service
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
  • T1027.018 - Invisible Unicode
MITREへのリンク →

Kimsuky

Score: 12.62
Matched TTPs:
  • T1543.003 - Windows Service
  • T1552.003 - Shell History
  • T1199 - Trusted Relationship
  • T1547.002 - Authentication Package
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
  • T1490 - Inhibit System Recovery
MITREへのリンク →

FIN7

Score: 13.26
Matched TTPs:
  • T1543.003 - Windows Service
  • T1011.001 - Exfiltration Over Bluetooth
  • T1199 - Trusted Relationship
  • T1547.002 - Authentication Package
  • T1027.018 - Invisible Unicode
  • T1490 - Inhibit System Recovery
MITREへのリンク →

Sandworm Team

Score: 7.43
Matched TTPs:
  • T1543.003 - Windows Service
  • T1199 - Trusted Relationship
  • T1547.002 - Authentication Package
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
MITREへのリンク →

Evilnum

Score: 4.19
Matched TTPs:
  • T1543.003 - Windows Service
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
MITREへのリンク →

Mustang Panda

Score: 9.17
Matched TTPs:
  • T1543.003 - Windows Service
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
  • T1055.005 - Thread Local Storage
  • T1027.018 - Invisible Unicode
MITREへのリンク →

FIN8

Score: 5.04
Matched TTPs:
  • T1543.003 - Windows Service
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
MITREへのリンク →

APT32

Score: 11.55
Matched TTPs:
  • T1543.003 - Windows Service
  • T1592.004 - Client Configurations
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
  • T1490 - Inhibit System Recovery
MITREへのリンク →

APT3

Score: 4.19
Matched TTPs:
  • T1543.003 - Windows Service
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
MITREへのリンク →

APT1

Score: 4.75
Matched TTPs:
  • T1543.003 - Windows Service
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
MITREへのリンク →

Lazarus Group

Score: 12.73
Matched TTPs:
  • T1543.003 - Windows Service
  • T1199 - Trusted Relationship
  • T1547.002 - Authentication Package
  • T1070.009 - Clear Persistence
  • T1055.005 - Thread Local Storage
  • T1547.008 - LSASS Driver
MITREへのリンク →

APT33

Score: 7.79
Matched TTPs:
  • T1543.003 - Windows Service
  • T1567.001 - Exfiltration to Code Repository
  • T1199 - Trusted Relationship
  • T1027.018 - Invisible Unicode
MITREへのリンク →

ZIRCONIUM

Score: 5.20
Matched TTPs:
  • T1543.003 - Windows Service
  • T1547.002 - Authentication Package
  • T1027.018 - Invisible Unicode
MITREへのリンク →

EXOTIC LILY

Score: 5.33
Matched TTPs:
  • T1543.003 - Windows Service
  • T1027.018 - Invisible Unicode
  • T1547.008 - LSASS Driver
MITREへのリンク →

Magic Hound

Score: 9.96
Matched TTPs:
  • T1543.003 - Windows Service
  • T1199 - Trusted Relationship
  • T1547.002 - Authentication Package
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
  • T1547.008 - LSASS Driver
MITREへのリンク →

OilRig

Score: 18.87
Matched TTPs:
  • T1543.003 - Windows Service
  • T1212 - Exploitation for Credential Access
  • T1199 - Trusted Relationship
  • T1592.002 - Software
  • T1556.009 - Conditional Access Policies
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
  • T1547.008 - LSASS Driver
MITREへのリンク →

Windshift

Score: 5.33
Matched TTPs:
  • T1543.003 - Windows Service
  • T1027.018 - Invisible Unicode
  • T1547.008 - LSASS Driver
MITREへのリンク →

Cobalt Group

Score: 5.04
Matched TTPs:
  • T1543.003 - Windows Service
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
MITREへのリンク →

APT29

Score: 14.07
Matched TTPs:
  • T1543.003 - Windows Service
  • T1592.004 - Client Configurations
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
  • T1547.008 - LSASS Driver
  • T1490 - Inhibit System Recovery
MITREへのリンク →

TA2541

Score: 6.11
Matched TTPs:
  • T1543.003 - Windows Service
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
  • T1027.018 - Invisible Unicode
MITREへのリンク →

Earth Lusca

Score: 6.11
Matched TTPs:
  • T1543.003 - Windows Service
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
  • T1027.018 - Invisible Unicode
MITREへのリンク →

RedCurl

Score: 4.19
Matched TTPs:
  • T1543.003 - Windows Service
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
MITREへのリンク →

Storm-1811

Score: 4.82
Matched TTPs:
  • T1543.003 - Windows Service
  • T1199 - Trusted Relationship
  • T1547.008 - LSASS Driver
MITREへのリンク →

Turla

Score: 17.95
Matched TTPs:
  • T1543.003 - Windows Service
  • T1136.002 - Domain Account
  • T1212 - Exploitation for Credential Access
  • T1199 - Trusted Relationship
  • T1547.002 - Authentication Package
  • T1556.009 - Conditional Access Policies
  • T1027.018 - Invisible Unicode
  • T1490 - Inhibit System Recovery
MITREへのリンク →

Wizard Spider

Score: 12.79
Matched TTPs:
  • T1543.003 - Windows Service
  • T1567.001 - Exfiltration to Code Repository
  • T1199 - Trusted Relationship
  • T1556.009 - Conditional Access Policies
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
MITREへのリンク →

Patchwork

Score: 5.04
Matched TTPs:
  • T1543.003 - Windows Service
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
MITREへのリンク →

TA505

Score: 6.11
Matched TTPs:
  • T1543.003 - Windows Service
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
  • T1027.018 - Invisible Unicode
MITREへのリンク →

LazyScripter

Score: 5.27
Matched TTPs:
  • T1543.003 - Windows Service
  • T1136.002 - Domain Account
  • T1027.018 - Invisible Unicode
MITREへのリンク →

APT39

Score: 7.43
Matched TTPs:
  • T1543.003 - Windows Service
  • T1199 - Trusted Relationship
  • T1547.002 - Authentication Package
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
MITREへのリンク →

Ember Bear

Score: 3.84
Matched TTPs:
  • T1136.002 - Domain Account
  • T1070.009 - Clear Persistence
MITREへのリンク →

LAPSUS$

Score: 3.31
Matched TTPs:
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
MITREへのリンク →

Metador

Score: 4.69
Matched TTPs:
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
MITREへのリンク →

Aquatic Panda

Score: 4.69
Matched TTPs:
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
MITREへのリンク →

UNC3886

Score: 3.84
Matched TTPs:
  • T1136.002 - Domain Account
  • T1070.009 - Clear Persistence
MITREへのリンク →

BackdoorDiplomacy

Score: 3.31
Matched TTPs:
  • T1136.002 - Domain Account
  • T1199 - Trusted Relationship
MITREへのリンク →

Scattered Spider

Score: 5.83
Matched TTPs:
  • T1136.002 - Domain Account
  • T1552.003 - Shell History
  • T1199 - Trusted Relationship
MITREへのリンク →

BRONZE BUTLER

Score: 6.07
Matched TTPs:
  • T1592.004 - Client Configurations
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
MITREへのリンク →

INC Ransom

Score: 4.75
Matched TTPs:
  • T1552.003 - Shell History
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
MITREへのリンク →

Contagious Interview

Score: 8.64
Matched TTPs:
  • T1552.003 - Shell History
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
  • T1547.008 - LSASS Driver
MITREへのリンク →

Cinnamon Tempest

Score: 3.37
Matched TTPs:
  • T1552.003 - Shell History
  • T1199 - Trusted Relationship
MITREへのリンク →

FIN13

Score: 3.37
Matched TTPs:
  • T1552.003 - Shell History
  • T1199 - Trusted Relationship
MITREへのリンク →

Medusa Group

Score: 9.29
Matched TTPs:
  • T1552.003 - Shell History
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
  • T1094 - Custom Command and Control Protocol
MITREへのリンク →

Play

Score: 7.42
Matched TTPs:
  • T1552.003 - Shell History
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
  • T1490 - Inhibit System Recovery
MITREへのリンク →

Tonto Team

Score: 3.15
Matched TTPs:
  • T1212 - Exploitation for Credential Access
MITREへのリンク →

HEXANE

Score: 6.40
Matched TTPs:
  • T1212 - Exploitation for Credential Access
  • T1199 - Trusted Relationship
  • T1547.002 - Authentication Package
MITREへのリンク →

admin@338

Score: 3.15
Matched TTPs:
  • T1212 - Exploitation for Credential Access
MITREへのリンク →

Chimera

Score: 5.38
Matched TTPs:
  • T1212 - Exploitation for Credential Access
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
MITREへのリンク →

Volt Typhoon

Score: 5.38
Matched TTPs:
  • T1212 - Exploitation for Credential Access
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
MITREへのリンク →

APT28

Score: 5.99
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1547.002 - Authentication Package
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
MITREへのリンク →

FIN6

Score: 4.75
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
  • T1547.008 - LSASS Driver
MITREへのリンク →

Sea Turtle

Score: 3.52
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1490 - Inhibit System Recovery
MITREへのリンク →

POLONIUM

Score: 3.25
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1547.002 - Authentication Package
MITREへのリンク →

FIN10

Score: 4.90
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
  • T1490 - Inhibit System Recovery
MITREへのリンク →

APT38

Score: 3.59
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
MITREへのリンク →

Gamaredon Group

Score: 5.99
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1547.002 - Authentication Package
  • T1070.009 - Clear Persistence
  • T1027.018 - Invisible Unicode
MITREへのリンク →

Carbanak

Score: 3.25
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1547.002 - Authentication Package
MITREへのリンク →

Stealth Falcon

Score: 3.62
Matched TTPs:
  • T1556.009 - Conditional Access Policies
MITREへのリンク →

Tropic Trooper

Score: 4.05
Matched TTPs:
  • T1070.009 - Clear Persistence
  • T1490 - Inhibit System Recovery
MITREへのリンク →

Equation

Score: 4.13
Matched TTPs:
  • T1130 - Install Root Certificate
MITREへのリンク →

Strider

Score: 4.13
Matched TTPs:
  • T1130 - Install Root Certificate
MITREへのリンク →

Axiom

Score: 4.54
Matched TTPs:
  • T1160 - Launch Daemon
MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Turla

Score: 0.77
Matched TTPs:
  • T1556.009 - Conditional Access Policies
  • T1543.003 - Windows Service
  • T1547.002 - Authentication Package
  • T1490 - Inhibit System Recovery
  • T1199 - Trusted Relationship
  • T1212 - Exploitation for Credential Access
  • T1027.018 - Invisible Unicode
  • T1136.002 - Domain Account
MITREへのリンク →

OilRig

Score: 0.77
Matched TTPs:
  • T1592.002 - Software
  • T1556.009 - Conditional Access Policies
  • T1543.003 - Windows Service
  • T1199 - Trusted Relationship
  • T1212 - Exploitation for Credential Access
  • T1547.008 - LSASS Driver
  • T1027.018 - Invisible Unicode
  • T1070.009 - Clear Persistence
MITREへのリンク →

FIN7

Score: 0.66
Matched TTPs:
  • T1543.003 - Windows Service
  • T1547.002 - Authentication Package
  • T1490 - Inhibit System Recovery
  • T1199 - Trusted Relationship
  • T1011.001 - Exfiltration Over Bluetooth
  • T1027.018 - Invisible Unicode
MITREへのリンク →

APT29

Score: 0.60
Matched TTPs:
  • T1543.003 - Windows Service
  • T1592.004 - Client Configurations
  • T1490 - Inhibit System Recovery
  • T1199 - Trusted Relationship
  • T1547.008 - LSASS Driver
  • T1027.018 - Invisible Unicode
  • T1070.009 - Clear Persistence
MITREへのリンク →

Wizard Spider

Score: 0.59
Matched TTPs:
  • T1567.001 - Exfiltration to Code Repository
  • T1556.009 - Conditional Access Policies
  • T1543.003 - Windows Service
  • T1199 - Trusted Relationship
  • T1027.018 - Invisible Unicode
  • T1070.009 - Clear Persistence
MITREへのリンク →

Lazarus Group

Score: 0.55
Matched TTPs:
  • T1543.003 - Windows Service
  • T1547.002 - Authentication Package
  • T1199 - Trusted Relationship
  • T1055.005 - Thread Local Storage
  • T1547.008 - LSASS Driver
  • T1070.009 - Clear Persistence
MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

← Pulse一覧に戻る