Trusted Design

Globeimposter ransomware continues to be delivered via Necurs botnet using fake scanner or printer messages | My Online Security

概要

From My Online Security: The next in the never ending series of malware downloaders from the Necurs botnet is an email with the subject of Message from “G10PR0378651.victimsdomain.com” pretending to come from random names at your own email address or company domain. They use email addresses and subjects that will entice, persuade, scare or shock a recipient to read the email and open the attachment. Once again the criminal gang sending these have partially shot themselves in the foot, trying to be clever & bypassing filters. The attachment says it is a zip file but is actually a 7z file renamed to zip.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

このPulseに関連する脅威アクター (事実ベース)

Mustard Tempest

Score: 11.24
Matched TTPs:
  • T1682 - Query Public AI Services
  • T1543.003 - Windows Service
  • T1091 - Replication Through Removable Media
  • T1053.002 - At
MITREへのリンク →

Volt Typhoon

Score: 7.47
Matched TTPs:
  • T1013 - Port Monitors
  • T1049 - System Network Connections Discovery
MITREへのリンク →

BlackByte

Score: 8.16
Matched TTPs:
  • T1013 - Port Monitors
  • T1091 - Replication Through Removable Media
  • T1027 - Obfuscated Files or Information
MITREへのリンク →

Mustang Panda

Score: 14.73
Matched TTPs:
  • T1013 - Port Monitors
  • T1543.003 - Windows Service
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1055.005 - Thread Local Storage
MITREへのリンク →

MuddyWater

Score: 4.72
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1547.002 - Authentication Package
MITREへのリンク →

LuminousMoth

Score: 3.42
Matched TTPs:
  • T1543.003 - Windows Service
  • T1091 - Replication Through Removable Media
MITREへのリンク →

Mofang

Score: 5.47
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1546.017 - Udev Rules
MITREへのリンク →

Kimsuky

Score: 23.78
Matched TTPs:
  • T1543.003 - Windows Service
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1588.001 - Malware
  • T1552.003 - Shell History
  • T1562.013 - Disable or Modify Network Device Firewall
  • T1547.002 - Authentication Package
  • T1197 - BITS Jobs
  • T1053.002 - At
MITREへのリンク →

Sidewinder

Score: 8.40
Matched TTPs:
  • T1543.003 - Windows Service
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1657 - Financial Theft
MITREへのリンク →

FIN7

Score: 11.13
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1588.001 - Malware
  • T1027 - Obfuscated Files or Information
  • T1547.002 - Authentication Package
MITREへのリンク →

Sandworm Team

Score: 15.11
Matched TTPs:
  • T1543.003 - Windows Service
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1049 - System Network Connections Discovery
  • T1027 - Obfuscated Files or Information
  • T1547.002 - Authentication Package
MITREへのリンク →

Transparent Tribe

Score: 5.61
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1053.002 - At
MITREへのリンク →

FIN8

Score: 4.66
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1027 - Obfuscated Files or Information
MITREへのリンク →

APT32

Score: 12.69
Matched TTPs:
  • T1543.003 - Windows Service
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1592.004 - Client Configurations
  • T1588.001 - Malware
MITREへのリンク →

APT3

Score: 5.07
Matched TTPs:
  • T1543.003 - Windows Service
  • T1578.002 - Create Cloud Instance
MITREへのリンク →

APT1

Score: 5.61
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1053.002 - At
MITREへのリンク →

Lazarus Group

Score: 13.47
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1588.001 - Malware
  • T1547.002 - Authentication Package
  • T1055.005 - Thread Local Storage
  • T1547.008 - LSASS Driver
MITREへのリンク →

Leviathan

Score: 5.47
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1546.017 - Udev Rules
MITREへのリンク →

ZIRCONIUM

Score: 11.84
Matched TTPs:
  • T1543.003 - Windows Service
  • T1566.002 - Spearphishing Link
  • T1588.001 - Malware
  • T1547.002 - Authentication Package
  • T1197 - BITS Jobs
MITREへのリンク →

EXOTIC LILY

Score: 6.82
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1547.008 - LSASS Driver
MITREへのリンク →

Molerats

Score: 5.47
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1546.017 - Udev Rules
MITREへのリンク →

Magic Hound

Score: 20.17
Matched TTPs:
  • T1543.003 - Windows Service
  • T1566.002 - Spearphishing Link
  • T1588.001 - Malware
  • T1027 - Obfuscated Files or Information
  • T1547.002 - Authentication Package
  • T1578.002 - Create Cloud Instance
  • T1547.008 - LSASS Driver
  • T1053.002 - At
MITREへのリンク →

OilRig

Score: 6.82
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1547.008 - LSASS Driver
MITREへのリンク →

Windshift

Score: 4.84
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1547.008 - LSASS Driver
MITREへのリンク →

APT29

Score: 13.23
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1592.004 - Client Configurations
  • T1223 - Compiled HTML File
  • T1547.008 - LSASS Driver
MITREへのリンク →

TA2541

Score: 7.45
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1546.017 - Udev Rules
MITREへのリンク →

Earth Lusca

Score: 7.96
Matched TTPs:
  • T1543.003 - Windows Service
  • T1499.004 - Application or System Exploitation
  • T1091 - Replication Through Removable Media
MITREへのリンク →

Storm-1811

Score: 9.93
Matched TTPs:
  • T1543.003 - Windows Service
  • T1027 - Obfuscated Files or Information
  • T1578.002 - Create Cloud Instance
  • T1547.008 - LSASS Driver
MITREへのリンク →

Turla

Score: 3.84
Matched TTPs:
  • T1543.003 - Windows Service
  • T1547.002 - Authentication Package
MITREへのリンク →

Wizard Spider

Score: 4.42
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1588.001 - Malware
MITREへのリンク →

Patchwork

Score: 4.78
Matched TTPs:
  • T1543.003 - Windows Service
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
MITREへのリンク →

TA505

Score: 6.64
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1027 - Obfuscated Files or Information
MITREへのリンク →

LazyScripter

Score: 4.29
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1091 - Replication Through Removable Media
MITREへのリンク →

APT42

Score: 3.42
Matched TTPs:
  • T1543.003 - Windows Service
  • T1091 - Replication Through Removable Media
MITREへのリンク →

APT39

Score: 4.72
Matched TTPs:
  • T1543.003 - Windows Service
  • T1598.003 - Spearphishing Link
  • T1547.002 - Authentication Package
MITREへのリンク →

Scattered Spider

Score: 19.14
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1144 - Gatekeeper Bypass
  • T1552.003 - Shell History
  • T1027 - Obfuscated Files or Information
  • T1197 - BITS Jobs
  • T1027.002 - Software Packing
MITREへのリンク →

APT28

Score: 17.84
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1547.002 - Authentication Package
  • T1197 - BITS Jobs
  • T1146 - Clear Command History
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Star Blizzard

Score: 8.93
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1657 - Financial Theft
MITREへのリンク →

Moonstone Sleet

Score: 13.61
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1027 - Obfuscated Files or Information
  • T1197 - BITS Jobs
  • T1547.008 - LSASS Driver
MITREへのリンク →

CURIUM

Score: 5.86
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1547.008 - LSASS Driver
MITREへのリンク →

Dragonfly

Score: 10.58
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1657 - Financial Theft
  • T1578.002 - Create Cloud Instance
MITREへのリンク →

FIN6

Score: 5.49
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1588.001 - Malware
  • T1547.008 - LSASS Driver
MITREへのリンク →

BRONZE BUTLER

Score: 4.72
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1592.004 - Client Configurations
MITREへのリンク →

Threat Group-3390

Score: 6.00
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1546.017 - Udev Rules
MITREへのリンク →

Gamaredon Group

Score: 8.40
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1547.002 - Authentication Package
  • T1546.017 - Udev Rules
MITREへのリンク →

BITTER

Score: 4.94
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1588.001 - Malware
MITREへのリンク →

Ajax Security Team

Score: 3.40
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1547.008 - LSASS Driver
MITREへのリンク →

APT41

Score: 5.31
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1588.001 - Malware
  • T1027 - Obfuscated Files or Information
MITREへのリンク →

Higaisa

Score: 6.12
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1588.001 - Malware
  • T1546.017 - Udev Rules
MITREへのリンク →

APT12

Score: 3.27
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1547.002 - Authentication Package
MITREへのリンク →

Malteiro

Score: 3.40
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1552.003 - Shell History
MITREへのリンク →

SideCopy

Score: 9.75
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1657 - Financial Theft
  • T1053.002 - At
MITREへのリンク →

APT37

Score: 3.27
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1547.002 - Authentication Package
MITREへのリンク →

APT38

Score: 7.75
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1027 - Obfuscated Files or Information
  • T1059.005 - Visual Basic
MITREへのリンク →

HEXANE

Score: 4.37
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1547.002 - Authentication Package
MITREへのリンク →

Contagious Interview

Score: 7.02
Matched TTPs:
  • T1091 - Replication Through Removable Media
  • T1552.003 - Shell History
  • T1547.008 - LSASS Driver
MITREへのリンク →

MoustachedBouncer

Score: 4.54
Matched TTPs:
  • T1055.003 - Thread Execution Hijacking
MITREへのリンク →

Aquatic Panda

Score: 5.94
Matched TTPs:
  • T1144 - Gatekeeper Bypass
  • T1588.001 - Malware
MITREへのリンク →

FIN13

Score: 8.46
Matched TTPs:
  • T1144 - Gatekeeper Bypass
  • T1588.001 - Malware
  • T1552.003 - Shell History
MITREへのリンク →

Carbanak

Score: 4.49
Matched TTPs:
  • T1588.001 - Malware
  • T1547.002 - Authentication Package
MITREへのリンク →

PROMETHIUM

Score: 6.23
Matched TTPs:
  • T1588.001 - Malware
  • T1547.015 - Login Items
MITREへのリンク →

UNC3886

Score: 6.23
Matched TTPs:
  • T1588.001 - Malware
  • T1547.015 - Login Items
MITREへのリンク →

Storm-0501

Score: 6.96
Matched TTPs:
  • T1588.001 - Malware
  • T1552.003 - Shell History
  • T1027 - Obfuscated Files or Information
MITREへのリンク →

HAFNIUM

Score: 3.62
Matched TTPs:
  • T1049 - System Network Connections Discovery
MITREへのリンク →

Axiom

Score: 6.91
Matched TTPs:
  • T1049 - System Network Connections Discovery
  • T1562.013 - Disable or Modify Network Device Firewall
MITREへのリンク →

INC Ransom

Score: 8.15
Matched TTPs:
  • T1552.003 - Shell History
  • T1562.013 - Disable or Modify Network Device Firewall
  • T1027 - Obfuscated Files or Information
MITREへのリンク →

AppleJeus

Score: 5.81
Matched TTPs:
  • T1552.003 - Shell History
  • T1562.013 - Disable or Modify Network Device Firewall
MITREへのリンク →

Akira

Score: 4.86
Matched TTPs:
  • T1552.003 - Shell History
  • T1027 - Obfuscated Files or Information
MITREへのリンク →

Medusa Group

Score: 4.86
Matched TTPs:
  • T1552.003 - Shell History
  • T1027 - Obfuscated Files or Information
MITREへのリンク →

Water Galura

Score: 4.86
Matched TTPs:
  • T1552.003 - Shell History
  • T1027 - Obfuscated Files or Information
MITREへのリンク →

Sea Turtle

Score: 3.29
Matched TTPs:
  • T1562.013 - Disable or Modify Network Device Firewall
MITREへのリンク →

GOLD SOUTHFIELD

Score: 3.29
Matched TTPs:
  • T1562.013 - Disable or Modify Network Device Firewall
MITREへのリンク →

Equation

Score: 4.13
Matched TTPs:
  • T1130 - Install Root Certificate
MITREへのリンク →

Strider

Score: 4.13
Matched TTPs:
  • T1130 - Install Root Certificate
MITREへのリンク →

Velvet Ant

Score: 4.13
Matched TTPs:
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Kimsuky

Score: 0.80
Matched TTPs:
  • T1543.003 - Windows Service
  • T1547.002 - Authentication Package
  • T1053.002 - At
  • T1598.003 - Spearphishing Link
  • T1552.003 - Shell History
  • T1562.013 - Disable or Modify Network Device Firewall
  • T1197 - BITS Jobs
  • T1588.001 - Malware
  • T1566.002 - Spearphishing Link
  • T1091 - Replication Through Removable Media
MITREへのリンク →

Magic Hound

Score: 0.70
Matched TTPs:
  • T1543.003 - Windows Service
  • T1547.002 - Authentication Package
  • T1053.002 - At
  • T1578.002 - Create Cloud Instance
  • T1547.008 - LSASS Driver
  • T1588.001 - Malware
  • T1566.002 - Spearphishing Link
  • T1027 - Obfuscated Files or Information
MITREへのリンク →

Scattered Spider

Score: 0.68
Matched TTPs:
  • T1027.002 - Software Packing
  • T1552.003 - Shell History
  • T1197 - BITS Jobs
  • T1144 - Gatekeeper Bypass
  • T1566.002 - Spearphishing Link
  • T1027 - Obfuscated Files or Information
MITREへのリンク →

APT28

Score: 0.63
Matched TTPs:
  • T1547.002 - Authentication Package
  • T1598.003 - Spearphishing Link
  • T1197 - BITS Jobs
  • T1146 - Clear Command History
  • T1566.002 - Spearphishing Link
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Sandworm Team

Score: 0.56
Matched TTPs:
  • T1543.003 - Windows Service
  • T1547.002 - Authentication Package
  • T1598.003 - Spearphishing Link
  • T1049 - System Network Connections Discovery
  • T1566.002 - Spearphishing Link
  • T1091 - Replication Through Removable Media
  • T1027 - Obfuscated Files or Information
MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

← Pulse一覧に戻る