Threat Intelligence Dossier: TOXICSNAKE
概要
A multi-domain traffic distribution system (TDS) operation was discovered, centered around the domain toxicsnake-wifes.com. The infrastructure serves as a commodity cybercrime TDS farm, routing victims to phishing, scams, or malware payloads. The operation uses a first-stage JavaScript loader, followed by a second-stage that attempts to fetch upstream payloads. The cluster shares common WHOIS, DNS, and hosting patterns, indicative of bulletproof VPS usage. Multiple burner domains with similar tradecraft were identified, suggesting an organized operator cluster. The infrastructure employs obfuscation, dynamic remote injection, and disposable registration techniques. While the main payload was unreachable during analysis, historical evidence suggests the delivery of malicious content.
Created: 2026-03-01
Indicators
類似Pulses
類似するPulseは見つかりませんでした。
このPulseに関連する脅威アクター (事実ベース)
Score: 85.51
Matched TTPs:
- T1583 - Acquire Infrastructure
- T1594 - Search Victim-Owned Websites
- T1587.001 - Malware
- T1566.002 - Spearphishing Link
- T1598.003 - Spearphishing Link
- T1040 - Network Sniffing
- T1608.001 - Upload Malware
- T1190 - Exploit Public-Facing Application
- T1583.001 - Domains
- T1562.004 - Disable or Modify System Firewall
- T1596 - Search Open Technical Databases
- T1505.003 - Web Shell
- T1583.004 - Server
- T1589.002 - Email Addresses
- T1593.002 - Search Engines
- T1083 - File and Directory Discovery
- T1218.005 - Mshta
- T1583.006 - Web Services
- T1041 - Exfiltration Over C2 Channel
- T1591 - Gather Victim Org Information
- T1071.002 - File Transfer Protocols
- T1534 - Internal Spearphishing
- T1593 - Search Open Websites/Domains
- T1588.002 - Tool
- T1566 - Phishing
- T1562.001 - Disable or Modify Tools
- T1593.001 - Social Media
- T1102.002 - Bidirectional Communication
- T1656 - Impersonation
- T1071.001 - Web Protocols
- T1204.001 - Malicious Link
- T1588.005 - Exploits
- T1102.001 - Dead Drop Resolver
MITREへのリンク →
Score: 33.77
Matched TTPs:
- T1583 - Acquire Infrastructure
- T1583.002 - DNS Server
- T1070.002 - Clear Linux or Mac System Logs
- T1190 - Exploit Public-Facing Application
- T1583.001 - Domains
- T1505.003 - Web Shell
- T1583.003 - Virtual Private Server
- T1588.002 - Tool
- T1566 - Phishing
- T1078 - Valid Accounts
- T1203 - Exploitation for Client Execution
- T1584.002 - DNS Server
- T1027.004 - Compile After Delivery
- T1071.001 - Web Protocols
MITREへのリンク →
Score: 49.26
Matched TTPs:
- T1583 - Acquire Infrastructure
- T1491.002 - External Defacement
- T1003.002 - Security Account Manager
- T1071.004 - DNS
- T1195 - Supply Chain Compromise
- T1190 - Exploit Public-Facing Application
- T1036 - Masquerading
- T1021 - Remote Services
- T1595.002 - Vulnerability Scanning
- T1505.003 - Web Shell
- T1588.001 - Malware
- T1583.003 - Virtual Private Server
- T1090.003 - Multi-hop Proxy
- T1562.001 - Disable or Modify Tools
- T1203 - Exploitation for Client Execution
- T1595.001 - Scanning IP Blocks
- T1046 - Network Service Discovery
- T1588.005 - Exploits
MITREへのリンク →
Score: 17.37
Matched TTPs:
- T1583 - Acquire Infrastructure
- T1587.001 - Malware
- T1590 - Gather Victim Network Information
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1486 - Data Encrypted for Impact
- T1584.004 - Server
MITREへのリンク →
Score: 16.58
Matched TTPs:
- T1583 - Acquire Infrastructure
- T1003.002 - Security Account Manager
- T1190 - Exploit Public-Facing Application
- T1036 - Masquerading
- T1505.003 - Web Shell
- T1041 - Exfiltration Over C2 Channel
- T1562.001 - Disable or Modify Tools
- T1046 - Network Service Discovery
MITREへのリンク →
Score: 53.78
Matched TTPs:
- T1583 - Acquire Infrastructure
- T1588.007 - Artificial Intelligence
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1583.001 - Domains
- T1036 - Masquerading
- T1589 - Gather Victim Identity Information
- T1681 - Search Threat Vendor Data
- T1090 - Proxy
- T1583.003 - Virtual Private Server
- T1083 - File and Directory Discovery
- T1583.006 - Web Services
- T1041 - Exfiltration Over C2 Channel
- T1593 - Search Open Websites/Domains
- T1588.002 - Tool
- T1562.001 - Disable or Modify Tools
- T1593.001 - Social Media
- T1656 - Impersonation
- T1204.004 - Malicious Copy and Paste
- T1204.001 - Malicious Link
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 83.82
Matched TTPs:
- T1583 - Acquire Infrastructure
- T1491.002 - External Defacement
- T1594 - Search Victim-Owned Websites
- T1587.001 - Malware
- T1566.002 - Spearphishing Link
- T1598.003 - Spearphishing Link
- T1040 - Network Sniffing
- T1608.001 - Upload Malware
- T1195 - Supply Chain Compromise
- T1190 - Exploit Public-Facing Application
- T1583.001 - Domains
- T1036 - Masquerading
- T1595.002 - Vulnerability Scanning
- T1505.003 - Web Shell
- T1583.004 - Server
- T1589.002 - Email Addresses
- T1591.002 - Business Relationships
- T1090 - Proxy
- T1083 - File and Directory Discovery
- T1584.005 - Botnet
- T1041 - Exfiltration Over C2 Channel
- T1593 - Search Open Websites/Domains
- T1588.002 - Tool
- T1078 - Valid Accounts
- T1486 - Data Encrypted for Impact
- T1592.002 - Software
- T1102.002 - Bidirectional Communication
- T1203 - Exploitation for Client Execution
- T1499 - Endpoint Denial of Service
- T1071.001 - Web Protocols
- T1584.004 - Server
- T1590.001 - Domain Properties
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 21.09
Matched TTPs:
- T1583 - Acquire Infrastructure
- T1598.003 - Spearphishing Link
- T1608.001 - Upload Malware
- T1583.001 - Domains
- T1589 - Gather Victim Identity Information
- T1598.002 - Spearphishing Attachment
- T1593 - Search Open Websites/Domains
- T1588.002 - Tool
- T1078 - Valid Accounts
MITREへのリンク →
Score: 67.17
Matched TTPs:
- T1027.009 - Embedded Payloads
- T1587.001 - Malware
- T1566.002 - Spearphishing Link
- T1583.001 - Domains
- T1010 - Application Window Discovery
- T1562.004 - Disable or Modify System Firewall
- T1090.002 - External Proxy
- T1589.002 - Email Addresses
- T1083 - File and Directory Discovery
- T1218.005 - Mshta
- T1104 - Multi-Stage Channels
- T1583.006 - Web Services
- T1491.001 - Internal Defacement
- T1041 - Exfiltration Over C2 Channel
- T1591 - Gather Victim Org Information
- T1588.002 - Tool
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1102.002 - Bidirectional Communication
- T1203 - Exploitation for Client Execution
- T1001.003 - Protocol or Service Impersonation
- T1189 - Drive-by Compromise
- T1071.001 - Web Protocols
- T1584.004 - Server
- T1046 - Network Service Discovery
- T1566.003 - Spearphishing via Service
- T1090.001 - Internal Proxy
- T1529 - System Shutdown/Reboot
MITREへのリンク →
Score: 6.65
Matched TTPs:
- T1027.009 - Embedded Payloads
- T1566.002 - Spearphishing Link
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 26.27
Matched TTPs:
- T1027.009 - Embedded Payloads
- T1587.001 - Malware
- T1598.003 - Spearphishing Link
- T1608.001 - Upload Malware
- T1583.001 - Domains
- T1589.002 - Email Addresses
- T1583.003 - Virtual Private Server
- T1591 - Gather Victim Org Information
- T1486 - Data Encrypted for Impact
- T1071.001 - Web Protocols
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 83.81
Matched TTPs:
- T1592 - Gather Victim Host Information
- T1016.001 - Internet Connection Discovery
- T1584.008 - Network Devices
- T1594 - Search Victim-Owned Websites
- T1590.004 - Network Topology
- T1584.003 - Virtual Private Server
- T1190 - Exploit Public-Facing Application
- T1010 - Application Window Discovery
- T1589 - Gather Victim Identity Information
- T1505.003 - Web Shell
- T1589.002 - Email Addresses
- T1590.006 - Network Security Appliances
- T1090 - Proxy
- T1083 - File and Directory Discovery
- T1584.005 - Botnet
- T1591 - Gather Victim Org Information
- T1590 - Gather Victim Network Information
- T1593 - Search Open Websites/Domains
- T1588.002 - Tool
- T1090.003 - Multi-hop Proxy
- T1078 - Valid Accounts
- T1587.004 - Exploits
- T1591.004 - Identify Roles
- T1584.004 - Server
- T1046 - Network Service Discovery
- T1518 - Software Discovery
- T1596.005 - Scan Databases
- T1090.001 - Internal Proxy
MITREへのリンク →
Score: 45.63
Matched TTPs:
- T1597.002 - Purchase Technical Data
- T1589 - Gather Victim Identity Information
- T1589.002 - Email Addresses
- T1598.004 - Spearphishing Voice
- T1591.002 - Business Relationships
- T1090 - Proxy
- T1588.001 - Malware
- T1583.003 - Virtual Private Server
- T1588.002 - Tool
- T1078 - Valid Accounts
- T1589.001 - Credentials
- T1584.002 - DNS Server
- T1656 - Impersonation
- T1591.004 - Identify Roles
- T1213.003 - Code Repositories
MITREへのリンク →
Score: 13.41
Matched TTPs:
- T1590.005 - IP Addresses
- T1588.001 - Malware
- T1592.002 - Software
- T1203 - Exploitation for Client Execution
- T1189 - Drive-by Compromise
MITREへのリンク →
Score: 72.71
Matched TTPs:
- T1590.005 - IP Addresses
- T1016.001 - Internet Connection Discovery
- T1566.002 - Spearphishing Link
- T1598.003 - Spearphishing Link
- T1071 - Application Layer Protocol
- T1190 - Exploit Public-Facing Application
- T1583.001 - Domains
- T1589 - Gather Victim Identity Information
- T1562.004 - Disable or Modify System Firewall
- T1595.002 - Vulnerability Scanning
- T1505.003 - Web Shell
- T1589.002 - Email Addresses
- T1090 - Proxy
- T1482 - Domain Trust Discovery
- T1083 - File and Directory Discovery
- T1583.006 - Web Services
- T1588.002 - Tool
- T1562.001 - Disable or Modify Tools
- T1486 - Data Encrypted for Impact
- T1573 - Encrypted Channel
- T1592.002 - Software
- T1589.001 - Credentials
- T1102.002 - Bidirectional Communication
- T1036.010 - Masquerade Account Name
- T1189 - Drive-by Compromise
- T1071.001 - Web Protocols
- T1046 - Network Service Discovery
- T1591.001 - Determine Physical Locations
- T1204.001 - Malicious Link
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 35.22
Matched TTPs:
- T1590.005 - IP Addresses
- T1016.001 - Internet Connection Discovery
- T1583.005 - Botnet
- T1190 - Exploit Public-Facing Application
- T1505.003 - Web Shell
- T1589.002 - Email Addresses
- T1592.004 - Client Configurations
- T1583.003 - Virtual Private Server
- T1083 - File and Directory Discovery
- T1584.005 - Botnet
- T1583.006 - Web Services
- T1590 - Gather Victim Network Information
- T1071.001 - Web Protocols
MITREへのリンク →
Score: 59.32
Matched TTPs:
- T1568.002 - Domain Generation Algorithms
- T1003.002 - Security Account Manager
- T1071.004 - DNS
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1546.008 - Accessibility Features
- T1090 - Proxy
- T1083 - File and Directory Discovery
- T1104 - Multi-Stage Channels
- T1071.002 - File Transfer Protocols
- T1588.002 - Tool
- T1078 - Valid Accounts
- T1486 - Data Encrypted for Impact
- T1203 - Exploitation for Client Execution
- T1595.003 - Wordlist Scanning
- T1656 - Impersonation
- T1213.003 - Code Repositories
- T1071.001 - Web Protocols
- T1046 - Network Service Discovery
- T1596.005 - Scan Databases
- T1480.001 - Environmental Keying
- T1102.001 - Dead Drop Resolver
MITREへのリンク →
Score: 12.37
Matched TTPs:
- T1568.002 - Domain Generation Algorithms
- T1036 - Masquerading
- T1589.002 - Email Addresses
- T1218.005 - Mshta
- T1071.001 - Web Protocols
MITREへのリンク →
Score: 32.61
Matched TTPs:
- T1016.001 - Internet Connection Discovery
- T1583.002 - DNS Server
- T1608.001 - Upload Malware
- T1583.001 - Domains
- T1010 - Application Window Discovery
- T1589 - Gather Victim Identity Information
- T1589.002 - Email Addresses
- T1534 - Internal Spearphishing
- T1588.002 - Tool
- T1102.002 - Bidirectional Communication
- T1591.004 - Identify Roles
- T1518 - Software Discovery
MITREへのリンク →
Score: 56.86
Matched TTPs:
- T1016.001 - Internet Connection Discovery
- T1003.002 - Security Account Manager
- T1587.001 - Malware
- T1566.002 - Spearphishing Link
- T1586.003 - Cloud Accounts
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1505.003 - Web Shell
- T1090.002 - External Proxy
- T1546.008 - Accessibility Features
- T1649 - Steal or Forge Authentication Certificates
- T1218.005 - Mshta
- T1583.006 - Web Services
- T1588.002 - Tool
- T1090.003 - Multi-hop Proxy
- T1078 - Valid Accounts
- T1573 - Encrypted Channel
- T1203 - Exploitation for Client Execution
- T1027.006 - HTML Smuggling
- T1665 - Hide Infrastructure
- T1204.001 - Malicious Link
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 54.79
Matched TTPs:
- T1016.001 - Internet Connection Discovery
- T1080 - Taint Shared Content
- T1608.001 - Upload Malware
- T1583.001 - Domains
- T1090 - Proxy
- T1583.003 - Virtual Private Server
- T1083 - File and Directory Discovery
- T1102 - Web Service
- T1218.005 - Mshta
- T1583.006 - Web Services
- T1491.001 - Internal Defacement
- T1041 - Exfiltration Over C2 Channel
- T1102.003 - One-Way Communication
- T1534 - Internal Spearphishing
- T1588.002 - Tool
- T1090.003 - Multi-hop Proxy
- T1562.001 - Disable or Modify Tools
- T1001 - Data Obfuscation
- T1102.002 - Bidirectional Communication
- T1027.004 - Compile After Delivery
- T1071.001 - Web Protocols
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 18.50
Matched TTPs:
- T1016.001 - Internet Connection Discovery
- T1566.002 - Spearphishing Link
- T1608.001 - Upload Malware
- T1583.001 - Domains
- T1588.001 - Malware
- T1218.005 - Mshta
- T1583.006 - Web Services
- T1588.002 - Tool
- T1562.001 - Disable or Modify Tools
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 15.26
Matched TTPs:
- T1016.001 - Internet Connection Discovery
- T1482 - Domain Trust Discovery
- T1083 - File and Directory Discovery
- T1588.002 - Tool
- T1090.003 - Multi-hop Proxy
- T1046 - Network Service Discovery
- T1090.001 - Internal Proxy
MITREへのリンク →
Score: 27.66
Matched TTPs:
- T1016.001 - Internet Connection Discovery
- T1003.002 - Security Account Manager
- T1587.001 - Malware
- T1590.004 - Network Topology
- T1190 - Exploit Public-Facing Application
- T1036 - Masquerading
- T1589 - Gather Victim Identity Information
- T1505.003 - Web Shell
- T1083 - File and Directory Discovery
- T1588.002 - Tool
- T1071.001 - Web Protocols
- T1046 - Network Service Discovery
- T1090.001 - Internal Proxy
MITREへのリンク →
Score: 43.42
Matched TTPs:
- T1016.001 - Internet Connection Discovery
- T1587.001 - Malware
- T1566.002 - Spearphishing Link
- T1584.003 - Virtual Private Server
- T1090 - Proxy
- T1588.001 - Malware
- T1083 - File and Directory Discovery
- T1102 - Web Service
- T1583.006 - Web Services
- T1588.002 - Tool
- T1562.001 - Disable or Modify Tools
- T1584.006 - Web Services
- T1102.002 - Bidirectional Communication
- T1555.004 - Windows Credential Manager
- T1189 - Drive-by Compromise
- T1071.001 - Web Protocols
- T1584.004 - Server
- T1204.001 - Malicious Link
- T1090.001 - Internal Proxy
MITREへのリンク →
Score: 16.81
Matched TTPs:
- T1016.001 - Internet Connection Discovery
- T1566.002 - Spearphishing Link
- T1482 - Domain Trust Discovery
- T1102 - Web Service
- T1588.002 - Tool
- T1078 - Valid Accounts
- T1486 - Data Encrypted for Impact
- T1071.001 - Web Protocols
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 55.85
Matched TTPs:
- T1584.008 - Network Devices
- T1598.003 - Spearphishing Link
- T1040 - Network Sniffing
- T1190 - Exploit Public-Facing Application
- T1583.001 - Domains
- T1036 - Masquerading
- T1595.002 - Vulnerability Scanning
- T1596 - Search Open Technical Databases
- T1505.003 - Web Shell
- T1090.002 - External Proxy
- T1583.003 - Virtual Private Server
- T1083 - File and Directory Discovery
- T1583.006 - Web Services
- T1591 - Gather Victim Org Information
- T1588.002 - Tool
- T1090.003 - Multi-hop Proxy
- T1078 - Valid Accounts
- T1589.001 - Credentials
- T1102.002 - Bidirectional Communication
- T1203 - Exploitation for Client Execution
- T1189 - Drive-by Compromise
- T1498 - Network Denial of Service
- T1071.001 - Web Protocols
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 25.85
Matched TTPs:
- T1584.008 - Network Devices
- T1566.002 - Spearphishing Link
- T1598.003 - Spearphishing Link
- T1583.001 - Domains
- T1036 - Masquerading
- T1583.006 - Web Services
- T1041 - Exfiltration Over C2 Channel
- T1090.003 - Multi-hop Proxy
- T1102.002 - Bidirectional Communication
- T1665 - Hide Infrastructure
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 41.05
Matched TTPs:
- T1584.008 - Network Devices
- T1566.002 - Spearphishing Link
- T1190 - Exploit Public-Facing Application
- T1583.001 - Domains
- T1595.002 - Vulnerability Scanning
- T1505.003 - Web Shell
- T1041 - Exfiltration Over C2 Channel
- T1102.003 - One-Way Communication
- T1534 - Internal Spearphishing
- T1090.003 - Multi-hop Proxy
- T1078 - Valid Accounts
- T1587.004 - Exploits
- T1589.001 - Credentials
- T1203 - Exploitation for Client Execution
- T1189 - Drive-by Compromise
- T1584.004 - Server
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 21.94
Matched TTPs:
- T1583.008 - Malvertising
- T1566.002 - Spearphishing Link
- T1608.004 - Drive-by Target
- T1608.001 - Upload Malware
- T1583.004 - Server
- T1189 - Drive-by Compromise
- T1608.006 - SEO Poisoning
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 9.74
Matched TTPs:
- T1003.002 - Security Account Manager
- T1189 - Drive-by Compromise
- T1071.001 - Web Protocols
- T1584.004 - Server
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 16.11
Matched TTPs:
- T1003.002 - Security Account Manager
- T1190 - Exploit Public-Facing Application
- T1505.003 - Web Shell
- T1583.004 - Server
- T1090.002 - External Proxy
- T1041 - Exfiltration Over C2 Channel
- T1588.002 - Tool
- T1078 - Valid Accounts
MITREへのリンク →
Score: 44.67
Matched TTPs:
- T1003.002 - Security Account Manager
- T1598.003 - Spearphishing Link
- T1608.004 - Drive-by Target
- T1190 - Exploit Public-Facing Application
- T1583.001 - Domains
- T1562.004 - Disable or Modify System Firewall
- T1595.002 - Vulnerability Scanning
- T1505.003 - Web Shell
- T1591.002 - Business Relationships
- T1583.003 - Virtual Private Server
- T1083 - File and Directory Discovery
- T1598.002 - Spearphishing Attachment
- T1071.002 - File Transfer Protocols
- T1588.002 - Tool
- T1078 - Valid Accounts
- T1203 - Exploitation for Client Execution
- T1036.010 - Masquerade Account Name
- T1189 - Drive-by Compromise
- T1584.004 - Server
MITREへのリンク →
Score: 19.48
Matched TTPs:
- T1003.002 - Security Account Manager
- T1071.004 - DNS
- T1587.001 - Malware
- T1583.005 - Botnet
- T1190 - Exploit Public-Facing Application
- T1083 - File and Directory Discovery
- T1041 - Exfiltration Over C2 Channel
- T1588.002 - Tool
- T1078 - Valid Accounts
- T1071.001 - Web Protocols
MITREへのリンク →
Score: 10.97
Matched TTPs:
- T1003.002 - Security Account Manager
- T1583.005 - Botnet
- T1190 - Exploit Public-Facing Application
- T1505.003 - Web Shell
- T1083 - File and Directory Discovery
MITREへのリンク →
Score: 15.85
Matched TTPs:
- T1003.002 - Security Account Manager
- T1190 - Exploit Public-Facing Application
- T1583.001 - Domains
- T1036 - Masquerading
- T1090.002 - External Proxy
- T1083 - File and Directory Discovery
- T1588.002 - Tool
- T1078 - Valid Accounts
- T1046 - Network Service Discovery
MITREへのリンク →
Score: 24.97
Matched TTPs:
- T1003.002 - Security Account Manager
- T1608.004 - Drive-by Target
- T1608.001 - Upload Malware
- T1190 - Exploit Public-Facing Application
- T1583.001 - Domains
- T1608.002 - Upload Tool
- T1505.003 - Web Shell
- T1588.002 - Tool
- T1078 - Valid Accounts
- T1203 - Exploitation for Client Execution
- T1189 - Drive-by Compromise
- T1071.001 - Web Protocols
- T1046 - Network Service Discovery
MITREへのリンク →
Score: 24.64
Matched TTPs:
- T1003.002 - Security Account Manager
- T1566.002 - Spearphishing Link
- T1518.002 - Backup Software Discovery
- T1021 - Remote Services
- T1041 - Exfiltration Over C2 Channel
- T1588.002 - Tool
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1555.004 - Windows Credential Manager
- T1071.001 - Web Protocols
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 15.90
Matched TTPs:
- T1594 - Search Victim-Owned Websites
- T1598.003 - Spearphishing Link
- T1583.001 - Domains
- T1589.002 - Email Addresses
- T1608.005 - Link Target
- T1588.002 - Tool
- T1078 - Valid Accounts
MITREへのリンク →
Score: 27.03
Matched TTPs:
- T1594 - Search Victim-Owned Websites
- T1566.002 - Spearphishing Link
- T1608.001 - Upload Malware
- T1583.001 - Domains
- T1589.002 - Email Addresses
- T1102 - Web Service
- T1597 - Search Closed Sources
- T1593.001 - Social Media
- T1203 - Exploitation for Client Execution
- T1204.001 - Malicious Link
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 6.66
Matched TTPs:
- T1594 - Search Victim-Owned Websites
- T1583.006 - Web Services
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 22.71
Matched TTPs:
- T1583.002 - DNS Server
- T1190 - Exploit Public-Facing Application
- T1546.008 - Accessibility Features
- T1583.003 - Virtual Private Server
- T1584.005 - Botnet
- T1566 - Phishing
- T1078 - Valid Accounts
- T1203 - Exploitation for Client Execution
- T1189 - Drive-by Compromise
MITREへのリンク →
Score: 22.15
Matched TTPs:
- T1071.004 - DNS
- T1482 - Domain Trust Discovery
- T1083 - File and Directory Discovery
- T1041 - Exfiltration Over C2 Channel
- T1588.002 - Tool
- T1078 - Valid Accounts
- T1589.001 - Credentials
- T1556.001 - Domain Controller Authentication
- T1071.001 - Web Protocols
- T1046 - Network Service Discovery
MITREへのリンク →
Score: 20.56
Matched TTPs:
- T1071.004 - DNS
- T1566.002 - Spearphishing Link
- T1608.001 - Upload Malware
- T1583.001 - Domains
- T1036 - Masquerading
- T1588.001 - Malware
- T1102 - Web Service
- T1218.005 - Mshta
- T1583.006 - Web Services
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 14.98
Matched TTPs:
- T1071.004 - DNS
- T1566.002 - Spearphishing Link
- T1218.003 - CMSTP
- T1588.002 - Tool
- T1203 - Exploitation for Client Execution
- T1071.001 - Web Protocols
- T1046 - Network Service Discovery
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 34.14
Matched TTPs:
- T1071.004 - DNS
- T1587.001 - Malware
- T1566.002 - Spearphishing Link
- T1608.001 - Upload Malware
- T1195 - Supply Chain Compromise
- T1583.001 - Domains
- T1036 - Masquerading
- T1562.004 - Disable or Modify System Firewall
- T1505.003 - Web Shell
- T1588.002 - Tool
- T1078 - Valid Accounts
- T1203 - Exploitation for Client Execution
- T1555.004 - Windows Credential Manager
- T1071.001 - Web Protocols
- T1046 - Network Service Discovery
- T1204.001 - Malicious Link
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 25.36
Matched TTPs:
- T1071.004 - DNS
- T1566.002 - Spearphishing Link
- T1190 - Exploit Public-Facing Application
- T1505.003 - Web Shell
- T1090.002 - External Proxy
- T1083 - File and Directory Discovery
- T1041 - Exfiltration Over C2 Channel
- T1588.002 - Tool
- T1078 - Valid Accounts
- T1102.002 - Bidirectional Communication
- T1071.001 - Web Protocols
- T1046 - Network Service Discovery
- T1204.001 - Malicious Link
- T1090.001 - Internal Proxy
MITREへのリンク →
Score: 16.63
Matched TTPs:
- T1071.004 - DNS
- T1505.003 - Web Shell
- T1083 - File and Directory Discovery
- T1573 - Encrypted Channel
- T1203 - Exploitation for Client Execution
- T1071.001 - Web Protocols
- T1046 - Network Service Discovery
- T1518 - Software Discovery
MITREへのリンク →
Score: 6.66
Matched TTPs:
- T1071.004 - DNS
- T1083 - File and Directory Discovery
- T1078 - Valid Accounts
- T1071.001 - Web Protocols
MITREへのリンク →
Score: 40.10
Matched TTPs:
- T1071.004 - DNS
- T1587.001 - Malware
- T1566.002 - Spearphishing Link
- T1608.004 - Drive-by Target
- T1608.001 - Upload Malware
- T1190 - Exploit Public-Facing Application
- T1583.001 - Domains
- T1562.004 - Disable or Modify System Firewall
- T1218.005 - Mshta
- T1608.005 - Link Target
- T1583.006 - Web Services
- T1591 - Gather Victim Org Information
- T1588.002 - Tool
- T1078 - Valid Accounts
- T1486 - Data Encrypted for Impact
- T1102.002 - Bidirectional Communication
- T1591.004 - Identify Roles
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 25.39
Matched TTPs:
- T1587.001 - Malware
- T1040 - Network Sniffing
- T1190 - Exploit Public-Facing Application
- T1562.004 - Disable or Modify System Firewall
- T1681 - Search Threat Vendor Data
- T1588.001 - Malware
- T1083 - File and Directory Discovery
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1587.004 - Exploits
- T1203 - Exploitation for Client Execution
MITREへのリンク →
Score: 21.52
Matched TTPs:
- T1587.001 - Malware
- T1566.002 - Spearphishing Link
- T1608.004 - Drive-by Target
- T1608.001 - Upload Malware
- T1588.001 - Malware
- T1083 - File and Directory Discovery
- T1608.005 - Link Target
- T1041 - Exfiltration Over C2 Channel
- T1588.002 - Tool
- T1071.001 - Web Protocols
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 21.79
Matched TTPs:
- T1587.001 - Malware
- T1070.002 - Clear Linux or Mac System Logs
- T1040 - Network Sniffing
- T1590.004 - Network Topology
- T1190 - Exploit Public-Facing Application
- T1602.002 - Network Device Configuration Dump
- T1562.004 - Disable or Modify System Firewall
- T1588.002 - Tool
MITREへのリンク →
Score: 8.94
Matched TTPs:
- T1587.001 - Malware
- T1190 - Exploit Public-Facing Application
- T1083 - File and Directory Discovery
- T1588.002 - Tool
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
MITREへのリンク →
Score: 7.92
Matched TTPs:
- T1587.001 - Malware
- T1036 - Masquerading
- T1083 - File and Directory Discovery
- T1588.002 - Tool
- T1203 - Exploitation for Client Execution
MITREへのリンク →
Score: 15.12
Matched TTPs:
- T1587.001 - Malware
- T1080 - Taint Shared Content
- T1566.002 - Spearphishing Link
- T1083 - File and Directory Discovery
- T1102 - Web Service
- T1071.001 - Web Protocols
- T1046 - Network Service Discovery
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 8.52
Matched TTPs:
- T1587.001 - Malware
- T1190 - Exploit Public-Facing Application
- T1562.004 - Disable or Modify System Firewall
- T1505.003 - Web Shell
- T1588.002 - Tool
MITREへのリンク →
Score: 42.48
Matched TTPs:
- T1587.001 - Malware
- T1566.002 - Spearphishing Link
- T1598.003 - Spearphishing Link
- T1608.001 - Upload Malware
- T1583.001 - Domains
- T1505.003 - Web Shell
- T1083 - File and Directory Discovery
- T1102 - Web Service
- T1218.005 - Mshta
- T1608 - Stage Capabilities
- T1583.006 - Web Services
- T1041 - Exfiltration Over C2 Channel
- T1593 - Search Open Websites/Domains
- T1588.002 - Tool
- T1203 - Exploitation for Client Execution
- T1001.003 - Protocol or Service Impersonation
- T1071.001 - Web Protocols
- T1046 - Network Service Discovery
- T1518 - Software Discovery
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 32.47
Matched TTPs:
- T1587.001 - Malware
- T1070.002 - Clear Linux or Mac System Logs
- T1071 - Application Layer Protocol
- T1608.001 - Upload Malware
- T1583.001 - Domains
- T1036 - Masquerading
- T1562.004 - Disable or Modify System Firewall
- T1595.002 - Vulnerability Scanning
- T1083 - File and Directory Discovery
- T1102 - Web Service
- T1562.001 - Disable or Modify Tools
- T1595.001 - Scanning IP Blocks
- T1071.001 - Web Protocols
- T1046 - Network Service Discovery
MITREへのリンク →
Score: 37.83
Matched TTPs:
- T1652 - Device Driver Discovery
- T1190 - Exploit Public-Facing Application
- T1608.002 - Upload Tool
- T1562.004 - Disable or Modify System Firewall
- T1505.003 - Web Shell
- T1083 - File and Directory Discovery
- T1583.006 - Web Services
- T1588.002 - Tool
- T1090.003 - Multi-hop Proxy
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1486 - Data Encrypted for Impact
- T1650 - Acquire Access
- T1071.001 - Web Protocols
- T1046 - Network Service Discovery
- T1529 - System Shutdown/Reboot
MITREへのリンク →
Score: 8.00
Matched TTPs:
- T1080 - Taint Shared Content
- T1083 - File and Directory Discovery
- T1203 - Exploitation for Client Execution
- T1189 - Drive-by Compromise
MITREへのリンク →
Score: 20.05
Matched TTPs:
- T1080 - Taint Shared Content
- T1036 - Masquerading
- T1083 - File and Directory Discovery
- T1588.002 - Tool
- T1562.001 - Disable or Modify Tools
- T1203 - Exploitation for Client Execution
- T1189 - Drive-by Compromise
- T1071.001 - Web Protocols
- T1518 - Software Discovery
- T1102.001 - Dead Drop Resolver
MITREへのリンク →
Score: 9.52
Matched TTPs:
- T1080 - Taint Shared Content
- T1190 - Exploit Public-Facing Application
- T1090 - Proxy
- T1588.002 - Tool
- T1078 - Valid Accounts
MITREへのリンク →
Score: 41.07
Matched TTPs:
- T1484.002 - Trust Modification
- T1598.003 - Spearphishing Link
- T1583.001 - Domains
- T1589 - Gather Victim Identity Information
- T1598.004 - Spearphishing Voice
- T1090 - Proxy
- T1588.001 - Malware
- T1083 - File and Directory Discovery
- T1041 - Exfiltration Over C2 Channel
- T1588.002 - Tool
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1486 - Data Encrypted for Impact
- T1656 - Impersonation
- T1213.003 - Code Repositories
- T1538 - Cloud Service Dashboard
MITREへのリンク →
Score: 10.87
Matched TTPs:
- T1484.002 - Trust Modification
- T1190 - Exploit Public-Facing Application
- T1482 - Domain Trust Discovery
- T1486 - Data Encrypted for Impact
MITREへのリンク →
Score: 8.38
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1190 - Exploit Public-Facing Application
- T1588.002 - Tool
- T1203 - Exploitation for Client Execution
- T1046 - Network Service Discovery
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 36.50
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1190 - Exploit Public-Facing Application
- T1218.003 - CMSTP
- T1090.002 - External Proxy
- T1083 - File and Directory Discovery
- T1218.005 - Mshta
- T1104 - Multi-Stage Channels
- T1583.006 - Web Services
- T1041 - Exfiltration Over C2 Channel
- T1588.002 - Tool
- T1562.001 - Disable or Modify Tools
- T1102.002 - Bidirectional Communication
- T1203 - Exploitation for Client Execution
- T1027.004 - Compile After Delivery
- T1071.001 - Web Protocols
- T1518 - Software Discovery
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 13.11
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1083 - File and Directory Discovery
- T1218.005 - Mshta
- T1583.006 - Web Services
- T1041 - Exfiltration Over C2 Channel
- T1203 - Exploitation for Client Execution
- T1071.001 - Web Protocols
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 17.95
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1598.003 - Spearphishing Link
- T1083 - File and Directory Discovery
- T1218.005 - Mshta
- T1598.002 - Spearphishing Attachment
- T1203 - Exploitation for Client Execution
- T1071.001 - Web Protocols
- T1518 - Software Discovery
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 6.07
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1203 - Exploitation for Client Execution
- T1189 - Drive-by Compromise
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 4.57
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1189 - Drive-by Compromise
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 10.62
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1608.004 - Drive-by Target
- T1583.001 - Domains
- T1203 - Exploitation for Client Execution
- T1189 - Drive-by Compromise
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 38.40
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1598.003 - Spearphishing Link
- T1608.004 - Drive-by Target
- T1608.001 - Upload Malware
- T1583.001 - Domains
- T1036 - Masquerading
- T1589 - Gather Victim Identity Information
- T1505.003 - Web Shell
- T1589.002 - Email Addresses
- T1083 - File and Directory Discovery
- T1102 - Web Service
- T1218.005 - Mshta
- T1583.006 - Web Services
- T1041 - Exfiltration Over C2 Channel
- T1588.002 - Tool
- T1203 - Exploitation for Client Execution
- T1189 - Drive-by Compromise
- T1071.001 - Web Protocols
- T1046 - Network Service Discovery
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 20.85
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1090.002 - External Proxy
- T1546.008 - Accessibility Features
- T1083 - File and Directory Discovery
- T1104 - Multi-Stage Channels
- T1041 - Exfiltration Over C2 Channel
- T1203 - Exploitation for Client Execution
- T1036.010 - Masquerade Account Name
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 6.27
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1583.001 - Domains
- T1588.001 - Malware
- T1588.002 - Tool
MITREへのリンク →
Score: 10.80
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1040 - Network Sniffing
- T1588.002 - Tool
- T1078 - Valid Accounts
- T1203 - Exploitation for Client Execution
- T1071.001 - Web Protocols
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 13.22
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1036 - Masquerading
- T1189 - Drive-by Compromise
- T1071.001 - Web Protocols
- T1518 - Software Discovery
- T1204.001 - Malicious Link
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 8.17
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1090.003 - Multi-hop Proxy
- T1078 - Valid Accounts
- T1071.001 - Web Protocols
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 34.79
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1608.001 - Upload Malware
- T1190 - Exploit Public-Facing Application
- T1583.001 - Domains
- T1595.002 - Vulnerability Scanning
- T1583.004 - Server
- T1090 - Proxy
- T1482 - Domain Trust Discovery
- T1588.001 - Malware
- T1218.005 - Mshta
- T1583.006 - Web Services
- T1588.002 - Tool
- T1584.006 - Web Services
- T1189 - Drive-by Compromise
- T1584.004 - Server
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 29.52
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1583.001 - Domains
- T1036 - Masquerading
- T1482 - Domain Trust Discovery
- T1588.002 - Tool
- T1486 - Data Encrypted for Impact
- T1566.004 - Spearphishing Voice
- T1667 - Email Bombing
- T1656 - Impersonation
- T1036.010 - Masquerade Account Name
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 13.96
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1598.003 - Spearphishing Link
- T1083 - File and Directory Discovery
- T1588.002 - Tool
- T1203 - Exploitation for Client Execution
- T1189 - Drive-by Compromise
- T1204.001 - Malicious Link
- T1102.001 - Dead Drop Resolver
MITREへのリンク →
Score: 14.93
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1608.001 - Upload Malware
- T1583.001 - Domains
- T1588.001 - Malware
- T1588.002 - Tool
- T1562.001 - Disable or Modify Tools
- T1486 - Data Encrypted for Impact
- T1071.001 - Web Protocols
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 15.05
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1608.001 - Upload Malware
- T1583.001 - Domains
- T1583.003 - Virtual Private Server
- T1102 - Web Service
- T1588.002 - Tool
- T1656 - Impersonation
- T1071.001 - Web Protocols
MITREへのリンク →
Score: 25.05
Matched TTPs:
- T1070.002 - Clear Linux or Mac System Logs
- T1071 - Application Layer Protocol
- T1190 - Exploit Public-Facing Application
- T1562.004 - Disable or Modify System Firewall
- T1102 - Web Service
- T1562.001 - Disable or Modify Tools
- T1027.004 - Compile After Delivery
- T1071.001 - Web Protocols
- T1046 - Network Service Discovery
- T1102.001 - Dead Drop Resolver
MITREへのリンク →
Score: 24.47
Matched TTPs:
- T1598.003 - Spearphishing Link
- T1608.004 - Drive-by Target
- T1583.001 - Domains
- T1505.003 - Web Shell
- T1583.004 - Server
- T1583.003 - Virtual Private Server
- T1041 - Exfiltration Over C2 Channel
- T1584.006 - Web Services
- T1189 - Drive-by Compromise
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 14.84
Matched TTPs:
- T1040 - Network Sniffing
- T1071 - Application Layer Protocol
- T1562.004 - Disable or Modify System Firewall
- T1083 - File and Directory Discovery
- T1562.001 - Disable or Modify Tools
- T1090.001 - Internal Proxy
MITREへのリンク →
Score: 5.65
Matched TTPs:
- T1040 - Network Sniffing
- T1588.002 - Tool
- T1046 - Network Service Discovery
MITREへのリンク →
Score: 16.37
Matched TTPs:
- T1071 - Application Layer Protocol
- T1190 - Exploit Public-Facing Application
- T1588.002 - Tool
- T1566 - Phishing
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1486 - Data Encrypted for Impact
- T1046 - Network Service Discovery
MITREへのリンク →
Score: 10.68
Matched TTPs:
- T1608.001 - Upload Malware
- T1218.005 - Mshta
- T1598.002 - Spearphishing Attachment
- T1518 - Software Discovery
MITREへのリンク →
Score: 27.33
Matched TTPs:
- T1608.001 - Upload Malware
- T1190 - Exploit Public-Facing Application
- T1562.004 - Disable or Modify System Firewall
- T1505.003 - Web Shell
- T1482 - Domain Trust Discovery
- T1583.003 - Virtual Private Server
- T1491.001 - Internal Defacement
- T1041 - Exfiltration Over C2 Channel
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1486 - Data Encrypted for Impact
- T1071.001 - Web Protocols
- T1046 - Network Service Discovery
MITREへのリンク →
Score: 10.64
Matched TTPs:
- T1608.001 - Upload Malware
- T1583.001 - Domains
- T1588.002 - Tool
- T1573 - Encrypted Channel
- T1203 - Exploitation for Client Execution
- T1071.001 - Web Protocols
MITREへのリンク →
Score: 14.19
Matched TTPs:
- T1608.001 - Upload Malware
- T1589.002 - Email Addresses
- T1583.006 - Web Services
- T1562.001 - Disable or Modify Tools
- T1203 - Exploitation for Client Execution
- T1656 - Impersonation
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 8.31
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1505.003 - Web Shell
- T1588.001 - Malware
- T1588.002 - Tool
- T1046 - Network Service Discovery
MITREへのリンク →
Score: 4.76
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1566 - Phishing
MITREへのリンク →
Score: 15.87
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1505.003 - Web Shell
- T1546.008 - Accessibility Features
- T1090 - Proxy
- T1083 - File and Directory Discovery
- T1102 - Web Service
- T1078 - Valid Accounts
- T1046 - Network Service Discovery
MITREへのリンク →
Score: 7.63
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1562.004 - Disable or Modify System Firewall
- T1083 - File and Directory Discovery
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 4.66
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1090 - Proxy
- T1588.002 - Tool
MITREへのリンク →
Score: 26.03
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1583.001 - Domains
- T1036 - Masquerading
- T1595.002 - Vulnerability Scanning
- T1056.003 - Web Portal Capture
- T1583.003 - Virtual Private Server
- T1083 - File and Directory Discovery
- T1041 - Exfiltration Over C2 Channel
- T1584.006 - Web Services
- T1189 - Drive-by Compromise
- T1071.001 - Web Protocols
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 9.96
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1505.003 - Web Shell
- T1595.003 - Wordlist Scanning
MITREへのリンク →
Score: 13.03
Matched TTPs:
- T1558 - Steal or Forge Kerberos Tickets
- T1482 - Domain Trust Discovery
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1486 - Data Encrypted for Impact
MITREへのリンク →
Score: 4.38
Matched TTPs:
- T1583.001 - Domains
- T1583.006 - Web Services
- T1588.002 - Tool
MITREへのリンク →
Score: 22.19
Matched TTPs:
- T1583.001 - Domains
- T1562.004 - Disable or Modify System Firewall
- T1505.003 - Web Shell
- T1083 - File and Directory Discovery
- T1218.005 - Mshta
- T1588.002 - Tool
- T1562.001 - Disable or Modify Tools
- T1486 - Data Encrypted for Impact
- T1189 - Drive-by Compromise
- T1071.001 - Web Protocols
- T1204.001 - Malicious Link
- T1529 - System Shutdown/Reboot
MITREへのリンク →
Score: 3.95
Matched TTPs:
- T1036 - Masquerading
- T1189 - Drive-by Compromise
MITREへのリンク →
Score: 6.88
Matched TTPs:
- T1659 - Content Injection
- T1090 - Proxy
MITREへのリンク →
Score: 7.01
Matched TTPs:
- T1562.004 - Disable or Modify System Firewall
- T1588.002 - Tool
- T1078 - Valid Accounts
- T1102.002 - Bidirectional Communication
MITREへのリンク →
Score: 11.54
Matched TTPs:
- T1021 - Remote Services
- T1595.002 - Vulnerability Scanning
- T1588.001 - Malware
- T1588.002 - Tool
- T1562.001 - Disable or Modify Tools
MITREへのリンク →
Score: 5.05
Matched TTPs:
- T1505.003 - Web Shell
- T1546.008 - Accessibility Features
MITREへのリンク →
Score: 6.01
Matched TTPs:
- T1505.003 - Web Shell
- T1090.002 - External Proxy
- T1203 - Exploitation for Client Execution
MITREへのリンク →
Score: 5.02
Matched TTPs:
- T1090.002 - External Proxy
- T1588.002 - Tool
- T1078 - Valid Accounts
MITREへのリンク →
Score: 5.02
Matched TTPs:
- T1090.002 - External Proxy
- T1588.002 - Tool
- T1078 - Valid Accounts
MITREへのリンク →
Score: 10.22
Matched TTPs:
- T1055.013 - Process Doppelgänging
- T1083 - File and Directory Discovery
- T1588.002 - Tool
- T1189 - Drive-by Compromise
- T1046 - Network Service Discovery
MITREへのリンク →
Score: 3.19
Matched TTPs:
- T1090 - Proxy
- T1588.002 - Tool
MITREへのリンク →
Score: 8.15
Matched TTPs:
- T1090 - Proxy
- T1083 - File and Directory Discovery
- T1189 - Drive-by Compromise
- T1518 - Software Discovery
MITREへのリンク →
Score: 9.02
Matched TTPs:
- T1090 - Proxy
- T1583.006 - Web Services
- T1588.002 - Tool
- T1078 - Valid Accounts
- T1102.002 - Bidirectional Communication
MITREへのリンク →
Score: 4.50
Matched TTPs:
- T1588.001 - Malware
- T1588.002 - Tool
- T1071.001 - Web Protocols
MITREへのリンク →
Score: 15.19
Matched TTPs:
- T1083 - File and Directory Discovery
- T1102 - Web Service
- T1218.005 - Mshta
- T1588.002 - Tool
- T1090.003 - Multi-hop Proxy
- T1203 - Exploitation for Client Execution
- T1071.001 - Web Protocols
- T1518 - Software Discovery
MITREへのリンク →
Score: 6.78
Matched TTPs:
- T1083 - File and Directory Discovery
- T1189 - Drive-by Compromise
- T1071.001 - Web Protocols
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 10.88
Matched TTPs:
- T1102 - Web Service
- T1588.002 - Tool
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1046 - Network Service Discovery
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 11.43
Matched TTPs:
- T1041 - Exfiltration Over C2 Channel
- T1203 - Exploitation for Client Execution
- T1001.003 - Protocol or Service Impersonation
- T1071.001 - Web Protocols
- T1090.001 - Internal Proxy
MITREへのリンク →
Score: 6.78
Matched TTPs:
- T1041 - Exfiltration Over C2 Channel
- T1555.004 - Windows Credential Manager
- T1071.001 - Web Protocols
MITREへのリンク →
Score: 4.81
Matched TTPs:
- T1071.002 - File Transfer Protocols
- T1071.001 - Web Protocols
MITREへのリンク →
Score: 3.80
Matched TTPs:
- T1588.002 - Tool
- T1189 - Drive-by Compromise
- T1071.001 - Web Protocols
MITREへのリンク →
Score: 3.19
Matched TTPs:
- T1078 - Valid Accounts
- T1046 - Network Service Discovery
MITREへのリンク →
Score: 10.47
Matched TTPs:
- T1102.002 - Bidirectional Communication
- T1203 - Exploitation for Client Execution
- T1189 - Drive-by Compromise
- T1071.001 - Web Protocols
- T1529 - System Shutdown/Reboot
MITREへのリンク →
Score: 3.89
Matched TTPs:
- T1102.002 - Bidirectional Communication
- T1203 - Exploitation for Client Execution
MITREへのリンク →
Score: 5.05
Matched TTPs:
- T1189 - Drive-by Compromise
- T1102.001 - Dead Drop Resolver
MITREへのリンク →
Score: 4.13
Matched TTPs:
- T1480.001 - Environmental Keying
MITREへのリンク →
このPulseに関連する脅威アクター (推論ベース)
Score: 0.70
Matched TTPs:
- T1588.002 - Tool
- T1587.001 - Malware
- T1218.005 - Mshta
- T1583 - Acquire Infrastructure
- T1562.001 - Disable or Modify Tools
- T1041 - Exfiltration Over C2 Channel
- T1040 - Network Sniffing
- T1562.004 - Disable or Modify System Firewall
- T1589.002 - Email Addresses
- T1596 - Search Open Technical Databases
- T1204.001 - Malicious Link
- T1071.002 - File Transfer Protocols
- T1102.002 - Bidirectional Communication
- T1566.002 - Spearphishing Link
- T1102.001 - Dead Drop Resolver
- T1593 - Search Open Websites/Domains
- T1594 - Search Victim-Owned Websites
- T1591 - Gather Victim Org Information
- T1583.001 - Domains
- T1083 - File and Directory Discovery
- T1593.001 - Social Media
- T1583.004 - Server
- T1608.001 - Upload Malware
- T1583.006 - Web Services
- T1071.001 - Web Protocols
- T1505.003 - Web Shell
- T1190 - Exploit Public-Facing Application
- T1534 - Internal Spearphishing
- T1598.003 - Spearphishing Link
- T1588.005 - Exploits
- T1566 - Phishing
- T1656 - Impersonation
- T1593.002 - Search Engines
MITREへのリンク →
Score: 0.69
Matched TTPs:
- T1588.002 - Tool
- T1587.001 - Malware
- T1090 - Proxy
- T1590.001 - Domain Properties
- T1036 - Masquerading
- T1591.002 - Business Relationships
- T1583 - Acquire Infrastructure
- T1041 - Exfiltration Over C2 Channel
- T1040 - Network Sniffing
- T1589.002 - Email Addresses
- T1204.001 - Malicious Link
- T1102.002 - Bidirectional Communication
- T1566.002 - Spearphishing Link
- T1593 - Search Open Websites/Domains
- T1078 - Valid Accounts
- T1584.005 - Botnet
- T1584.004 - Server
- T1203 - Exploitation for Client Execution
- T1195 - Supply Chain Compromise
- T1595.002 - Vulnerability Scanning
- T1594 - Search Victim-Owned Websites
- T1486 - Data Encrypted for Impact
- T1499 - Endpoint Denial of Service
- T1583.001 - Domains
- T1592.002 - Software
- T1083 - File and Directory Discovery
- T1583.004 - Server
- T1608.001 - Upload Malware
- T1491.002 - External Defacement
- T1505.003 - Web Shell
- T1190 - Exploit Public-Facing Application
- T1598.003 - Spearphishing Link
- T1071.001 - Web Protocols
MITREへのリンク →
Score: 0.69
Matched TTPs:
- T1588.002 - Tool
- T1591.004 - Identify Roles
- T1584.003 - Virtual Private Server
- T1090 - Proxy
- T1590.004 - Network Topology
- T1592 - Gather Victim Host Information
- T1090.001 - Internal Proxy
- T1589.002 - Email Addresses
- T1518 - Software Discovery
- T1593 - Search Open Websites/Domains
- T1078 - Valid Accounts
- T1584.005 - Botnet
- T1584.004 - Server
- T1589 - Gather Victim Identity Information
- T1584.008 - Network Devices
- T1594 - Search Victim-Owned Websites
- T1591 - Gather Victim Org Information
- T1046 - Network Service Discovery
- T1590 - Gather Victim Network Information
- T1596.005 - Scan Databases
- T1016.001 - Internet Connection Discovery
- T1083 - File and Directory Discovery
- T1587.004 - Exploits
- T1090.003 - Multi-hop Proxy
- T1505.003 - Web Shell
- T1190 - Exploit Public-Facing Application
- T1590.006 - Network Security Appliances
- T1010 - Application Window Discovery
MITREへのリンク →
Score: 0.60
Matched TTPs:
- T1588.002 - Tool
- T1573 - Encrypted Channel
- T1090 - Proxy
- T1482 - Domain Trust Discovery
- T1071 - Application Layer Protocol
- T1036.010 - Masquerade Account Name
- T1562.001 - Disable or Modify Tools
- T1562.004 - Disable or Modify System Firewall
- T1589.002 - Email Addresses
- T1204.001 - Malicious Link
- T1102.002 - Bidirectional Communication
- T1566.002 - Spearphishing Link
- T1589 - Gather Victim Identity Information
- T1595.002 - Vulnerability Scanning
- T1486 - Data Encrypted for Impact
- T1046 - Network Service Discovery
- T1583.001 - Domains
- T1590.005 - IP Addresses
- T1566.003 - Spearphishing via Service
- T1592.002 - Software
- T1016.001 - Internet Connection Discovery
- T1083 - File and Directory Discovery
- T1583.006 - Web Services
- T1505.003 - Web Shell
- T1190 - Exploit Public-Facing Application
- T1591.001 - Determine Physical Locations
- T1189 - Drive-by Compromise
- T1598.003 - Spearphishing Link
- T1071.001 - Web Protocols
- T1589.001 - Credentials
MITREへのリンク →
Related CVEs
このPulseに見つかったCVEはありません。
Pulse – 脅威アクター グラフ
← Pulse一覧に戻る
Trusted Design