Trusted Design

fake Sage invoice via Necurs botnet delivers Globeimposter Ransomware | My Online Security

概要

From MyOnlineSecurity: The next in the never ending series of malware downloaders via the Necurs botnet is an email with the subject of Invoice_3207070 ( random numbers) pretending to come from sage.co.uk They use email addresses and subjects that will entice, persuade, scare or shock a recipient to read the email and open the attachment. sage.co.uk has not been hacked or had their email or other servers compromised. They are not sending the emails to you. They are just innocent victims in exactly the same way as every recipient of these emails.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

Malware spam: "Your Sage subscription invoice is ready" (score: 0.78)
more Necurs botnet sent fake invoices deliver malware My Online Security (score: 0.76)
Fake Amazon Marketplace invoice emails deliver ransomware via Necurs botnet (score: 0.71)
Globeimposter ransomware continues to be delivered via Necurs botnet using fake scanner or printer messages | My Online Security (score: 0.69)
more Necurs botnet sent fake invoices deliver malware My Online Security (score: 0.68)

このPulseに関連する脅威アクター (事実ベース)

Scattered Spider

Score: 15.99

Matched TTPs:

T1564.008 - Email Hiding Rules
T1598.003 - Spearphishing Link
T1087 - Account Discovery
T1657 - Financial Theft
T1656 - Impersonation

MITREへのリンク →

FIN4

Score: 4.13

Matched TTPs:

T1564.008 - Email Hiding Rules

MITREへのリンク →

Mustard Tempest

Score: 6.51

Matched TTPs:

T1583.008 - Malvertising
T1608.001 - Upload Malware

MITREへのリンク →

Sidewinder

Score: 6.08

Matched TTPs:

T1598.003 - Spearphishing Link
T1598.002 - Spearphishing Attachment

MITREへのリンク →

Mustang Panda

Score: 8.56

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Sandworm Team

Score: 13.28

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1584.005 - Botnet
T1102.002 - Bidirectional Communication
T1584.004 - Server

MITREへのリンク →

ZIRCONIUM

Score: 4.86

Matched TTPs:

T1598.003 - Spearphishing Link
T1102.002 - Bidirectional Communication

MITREへのリンク →

APT32

Score: 4.43

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.001 - Upload Malware

MITREへのリンク →

Kimsuky

Score: 15.67

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1657 - Financial Theft
T1566 - Phishing
T1102.002 - Bidirectional Communication
T1656 - Impersonation

MITREへのリンク →

Magic Hound

Score: 7.38

Matched TTPs:

T1598.003 - Spearphishing Link
T1102.002 - Bidirectional Communication
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT28

Score: 13.53

Matched TTPs:

T1598.003 - Spearphishing Link
T1102.002 - Bidirectional Communication
T1498 - Network Denial of Service
T1211 - Exploitation for Defense Evasion

MITREへのリンク →

Star Blizzard

Score: 8.05

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1598.002 - Spearphishing Attachment

MITREへのリンク →

Moonstone Sleet

Score: 6.95

Matched TTPs:

T1598.003 - Spearphishing Link
T1608.001 - Upload Malware
T1566.003 - Spearphishing via Service

MITREへのリンク →

CURIUM

Score: 4.98

Matched TTPs:

T1598.003 - Spearphishing Link
T1566.003 - Spearphishing via Service

MITREへのリンク →

Dragonfly

Score: 8.91

Matched TTPs:

T1598.003 - Spearphishing Link
T1598.002 - Spearphishing Attachment
T1584.004 - Server

MITREへのリンク →

HAFNIUM

Score: 7.47

Matched TTPs:

T1583.005 - Botnet
T1584.005 - Botnet

MITREへのリンク →

APT5

Score: 3.84

Matched TTPs:

T1583.005 - Botnet

MITREへのリンク →

Ke3chang

Score: 3.84

Matched TTPs:

T1583.005 - Botnet

MITREへのリンク →

Earth Lusca

Score: 4.81

Matched TTPs:

T1608.001 - Upload Malware
T1584.004 - Server

MITREへのリンク →

OilRig

Score: 4.50

Matched TTPs:

T1608.001 - Upload Malware
T1566.003 - Spearphishing via Service

MITREへのリンク →

Gamaredon Group

Score: 4.37

Matched TTPs:

T1608.001 - Upload Malware
T1102.002 - Bidirectional Communication

MITREへのリンク →

SideCopy

Score: 5.59

Matched TTPs:

T1608.001 - Upload Malware
T1598.002 - Spearphishing Attachment

MITREへのリンク →

HEXANE

Score: 4.37

Matched TTPs:

T1608.001 - Upload Malware
T1102.002 - Bidirectional Communication

MITREへのリンク →

Saint Bear

Score: 5.01

Matched TTPs:

T1608.001 - Upload Malware
T1656 - Impersonation

MITREへのリンク →

Contagious Interview

Score: 10.05

Matched TTPs:

T1608.001 - Upload Malware
T1657 - Financial Theft
T1656 - Impersonation
T1566.003 - Spearphishing via Service

MITREへのリンク →

FIN7

Score: 4.37

Matched TTPs:

T1608.001 - Upload Malware
T1102.002 - Bidirectional Communication

MITREへのリンク →

EXOTIC LILY

Score: 4.50

Matched TTPs:

T1608.001 - Upload Malware
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT42

Score: 5.01

Matched TTPs:

T1608.001 - Upload Malware
T1656 - Impersonation

MITREへのリンク →

MoustachedBouncer

Score: 4.54

Matched TTPs:

T1659 - Content Injection

MITREへのリンク →

Aquatic Panda

Score: 3.84

Matched TTPs:

T1087 - Account Discovery

MITREへのリンク →

FIN13

Score: 6.37

Matched TTPs:

T1087 - Account Discovery
T1657 - Financial Theft

MITREへのリンク →

Axiom

Score: 6.91

Matched TTPs:

T1584.005 - Botnet
T1566 - Phishing

MITREへのリンク →

Volt Typhoon

Score: 6.45

Matched TTPs:

T1584.005 - Botnet
T1584.004 - Server

MITREへのリンク →

INC Ransom

Score: 5.81

Matched TTPs:

T1657 - Financial Theft
T1566 - Phishing

MITREへのリンク →

AppleJeus

Score: 5.81

Matched TTPs:

T1657 - Financial Theft
T1566 - Phishing

MITREへのリンク →

PROMETHIUM

Score: 4.13

Matched TTPs:

T1205.001 - Port Knocking

MITREへのリンク →

UNC3886

Score: 4.13

Matched TTPs:

T1205.001 - Port Knocking

MITREへのリンク →

Sea Turtle

Score: 3.29

Matched TTPs:

T1566 - Phishing

MITREへのリンク →

GOLD SOUTHFIELD

Score: 3.29

Matched TTPs:

T1566 - Phishing

MITREへのリンク →

Storm-1811

Score: 14.63

Matched TTPs:

T1566.004 - Spearphishing Voice
T1667 - Email Bombing
T1656 - Impersonation
T1566.003 - Spearphishing via Service

MITREへのリンク →

Lazarus Group

Score: 11.89

Matched TTPs:

T1102.002 - Bidirectional Communication
T1584.004 - Server
T1027.007 - Dynamic API Resolution
T1566.003 - Spearphishing via Service

MITREへのリンク →

Turla

Score: 5.23

Matched TTPs:

T1102.002 - Bidirectional Communication
T1584.004 - Server

MITREへのリンク →

LAPSUS$

Score: 3.03

Matched TTPs:

T1656 - Impersonation

MITREへのリンク →

APT41

Score: 3.03

Matched TTPs:

T1656 - Impersonation

MITREへのリンク →

Equation

Score: 4.13

Matched TTPs:

T1564.005 - Hidden File System

MITREへのリンク →

Strider

Score: 4.13

Matched TTPs:

T1564.005 - Hidden File System

MITREへのリンク →

APT38

Score: 4.54

Matched TTPs:

T1036.006 - Space after Filename

MITREへのリンク →

Velvet Ant

Score: 4.13

Matched TTPs:

T1211 - Exploitation for Defense Evasion

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Storm-1811

Score: 0.80

Matched TTPs:

T1566.003 - Spearphishing via Service
T1566.004 - Spearphishing Voice
T1656 - Impersonation
T1667 - Email Bombing

MITREへのリンク →

Scattered Spider

Score: 0.79

Matched TTPs:

T1087 - Account Discovery
T1598.003 - Spearphishing Link
T1657 - Financial Theft
T1564.008 - Email Hiding Rules
T1656 - Impersonation

MITREへのリンク →

Kimsuky

Score: 0.77

Matched TTPs:

T1102.002 - Bidirectional Communication
T1598.003 - Spearphishing Link
T1566 - Phishing
T1657 - Financial Theft
T1608.001 - Upload Malware
T1656 - Impersonation

MITREへのリンク →

APT28

Score: 0.69

Matched TTPs:

T1498 - Network Denial of Service
T1102.002 - Bidirectional Communication
T1598.003 - Spearphishing Link
T1211 - Exploitation for Defense Evasion

MITREへのリンク →

Sandworm Team

Score: 0.67

Matched TTPs:

T1102.002 - Bidirectional Communication
T1598.003 - Spearphishing Link
T1584.004 - Server
T1608.001 - Upload Malware
T1584.005 - Botnet

MITREへのリンク →

Lazarus Group

Score: 0.62

Matched TTPs:

T1566.003 - Spearphishing via Service
T1102.002 - Bidirectional Communication
T1584.004 - Server
T1027.007 - Dynamic API Resolution

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る