Trusted Design

Invitation to Trouble: The Rise of Calendar Phishing Attacks

概要

A new phishing tactic involving fake Microsoft and Google Calendar invites has been identified, aimed at stealing login credentials. These sophisticated attacks mimic designs from well-known platforms, exploiting routine business activities like scheduling meetings. Threat actors use email spoofing and create fake urgent calendar invitations to deceive employees. The phishing emails often contain buttons or links that redirect to fake login pages, closely resembling official Microsoft or Google login screens. The campaigns exploit the popularity of calendar invitations in corporate environments, allowing attackers to gather sensitive information if users are not vigilant. To prevent falling victim to these attacks, it is crucial to verify the authenticity of calendar invites, carefully check sender details, and avoid clicking suspicious links from unknown senders.

Created: 2026-03-21

Indicators

類似Pulses

類似するPulseは見つかりませんでした。

このPulseに関連する脅威アクター (事実ベース)

Ember Bear

Score: 11.96
Matched TTPs:
  • T1491.002 - External Defacement
  • T1003.002 - Security Account Manager
  • T1654 - Log Enumeration
  • T1562.001 - Disable or Modify Tools
MITREへのリンク →

Sandworm Team

Score: 32.88
Matched TTPs:
  • T1491.002 - External Defacement
  • T1586.001 - Social Media Accounts
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1555.003 - Credentials from Web Browsers
  • T1585.002 - Email Accounts
  • T1589.002 - Email Addresses
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1486 - Data Encrypted for Impact
  • T1499 - Endpoint Denial of Service
  • T1204.001 - Malicious Link
MITREへのリンク →

Andariel

Score: 5.61
Matched TTPs:
  • T1590.005 - IP Addresses
  • T1189 - Drive-by Compromise
MITREへのリンク →

Magic Hound

Score: 50.66
Matched TTPs:
  • T1590.005 - IP Addresses
  • T1114.001 - Local Email Collection
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1071 - Application Layer Protocol
  • T1586.002 - Email Accounts
  • T1589 - Gather Victim Identity Information
  • T1585.002 - Email Accounts
  • T1589.002 - Email Addresses
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1583.006 - Web Services
  • T1562.001 - Disable or Modify Tools
  • T1486 - Data Encrypted for Impact
  • T1573 - Encrypted Channel
  • T1589.001 - Credentials
  • T1189 - Drive-by Compromise
  • T1204.001 - Malicious Link
  • T1566.003 - Spearphishing via Service
  • T1584.001 - Domains
MITREへのリンク →

HAFNIUM

Score: 17.37
Matched TTPs:
  • T1590.005 - IP Addresses
  • T1583.005 - Botnet
  • T1589.002 - Email Addresses
  • T1593.003 - Code Repositories
  • T1083 - File and Directory Discovery
  • T1583.006 - Web Services
MITREへのリンク →

Volt Typhoon

Score: 28.85
Matched TTPs:
  • T1584.008 - Network Devices
  • T1555 - Credentials from Password Stores
  • T1010 - Application Window Discovery
  • T1589 - Gather Victim Identity Information
  • T1555.003 - Credentials from Web Browsers
  • T1589.002 - Email Addresses
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1654 - Log Enumeration
  • T1596.005 - Scan Databases
MITREへのリンク →

APT28

Score: 22.06
Matched TTPs:
  • T1584.008 - Network Devices
  • T1598.003 - Spearphishing Link
  • T1586.002 - Email Accounts
  • T1083 - File and Directory Discovery
  • T1583.006 - Web Services
  • T1589.001 - Credentials
  • T1598 - Phishing for Information
  • T1189 - Drive-by Compromise
  • T1204.001 - Malicious Link
MITREへのリンク →

ZIRCONIUM

Score: 16.39
Matched TTPs:
  • T1584.008 - Network Devices
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1555.003 - Credentials from Web Browsers
  • T1583.006 - Web Services
  • T1598 - Phishing for Information
  • T1204.001 - Malicious Link
MITREへのリンク →

Leviathan

Score: 24.34
Matched TTPs:
  • T1584.008 - Network Devices
  • T1586.001 - Social Media Accounts
  • T1566.002 - Spearphishing Link
  • T1586.002 - Email Accounts
  • T1585.002 - Email Accounts
  • T1534 - Internal Spearphishing
  • T1589.001 - Credentials
  • T1189 - Drive-by Compromise
  • T1204.001 - Malicious Link
MITREへのリンク →

Mustard Tempest

Score: 14.37
Matched TTPs:
  • T1583.008 - Malvertising
  • T1566.002 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1189 - Drive-by Compromise
  • T1204.001 - Malicious Link
  • T1584.001 - Domains
MITREへのリンク →

Daggerfly

Score: 5.72
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1189 - Drive-by Compromise
  • T1204.001 - Malicious Link
MITREへのリンク →

APT29

Score: 26.39
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1566.002 - Spearphishing Link
  • T1586.002 - Email Accounts
  • T1546.008 - Accessibility Features
  • T1649 - Steal or Forge Authentication Certificates
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1573 - Encrypted Channel
  • T1204.001 - Malicious Link
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

FIN13

Score: 13.48
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1589 - Gather Victim Identity Information
  • T1083 - File and Directory Discovery
  • T1657 - Financial Theft
  • T1134.003 - Make and Impersonate Token
MITREへのリンク →

Dragonfly

Score: 11.74
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1598.003 - Spearphishing Link
  • T1083 - File and Directory Discovery
  • T1598.002 - Spearphishing Attachment
  • T1189 - Drive-by Compromise
MITREへのリンク →

Ke3chang

Score: 7.74
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1583.005 - Botnet
  • T1083 - File and Directory Discovery
MITREへのリンク →

Agrius

Score: 4.39
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1562.001 - Disable or Modify Tools
MITREへのリンク →

APT41

Score: 35.85
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1555 - Credentials from Password Stores
  • T1555.003 - Credentials from Web Browsers
  • T1546.008 - Accessibility Features
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1486 - Data Encrypted for Impact
  • T1595.003 - Wordlist Scanning
  • T1656 - Impersonation
  • T1213.003 - Code Repositories
  • T1596.005 - Scan Databases
  • T1480.001 - Environmental Keying
MITREへのリンク →

APT5

Score: 11.18
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1583.005 - Botnet
  • T1083 - File and Directory Discovery
  • T1654 - Log Enumeration
MITREへのリンク →

menuPass

Score: 7.04
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1083 - File and Directory Discovery
  • T1055.012 - Process Hollowing
MITREへのリンク →

Threat Group-3390

Score: 9.48
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1608.001 - Upload Malware
  • T1055.012 - Process Hollowing
  • T1189 - Drive-by Compromise
MITREへのリンク →

Wizard Spider

Score: 17.64
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1566.002 - Spearphishing Link
  • T1518.002 - Backup Software Discovery
  • T1585.002 - Email Accounts
  • T1562.001 - Disable or Modify Tools
  • T1555.004 - Windows Credential Manager
  • T1204.001 - Malicious Link
MITREへのリンク →

Silent Librarian

Score: 14.26
Matched TTPs:
  • T1588.004 - Digital Certificates
  • T1598.003 - Spearphishing Link
  • T1585.002 - Email Accounts
  • T1589.002 - Email Addresses
  • T1608.005 - Link Target
MITREへのリンク →

Lazarus Group

Score: 28.84
Matched TTPs:
  • T1588.004 - Digital Certificates
  • T1566.002 - Spearphishing Link
  • T1010 - Application Window Discovery
  • T1585.002 - Email Accounts
  • T1589.002 - Email Addresses
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1491.001 - Internal Defacement
  • T1562.001 - Disable or Modify Tools
  • T1189 - Drive-by Compromise
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Sea Turtle

Score: 20.81
Matched TTPs:
  • T1588.004 - Digital Certificates
  • T1583.002 - DNS Server
  • T1114.001 - Local Email Collection
  • T1070.002 - Clear Linux or Mac System Logs
  • T1566 - Phishing
  • T1027.004 - Compile After Delivery
MITREへのリンク →

Mustang Panda

Score: 27.36
Matched TTPs:
  • T1588.004 - Digital Certificates
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1586.002 - Email Accounts
  • T1608.001 - Upload Malware
  • T1585.002 - Email Accounts
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
  • T1654 - Log Enumeration
  • T1583.006 - Web Services
  • T1219.002 - Remote Desktop Software
  • T1204.001 - Malicious Link
MITREへのリンク →

UNC3886

Score: 6.25
Matched TTPs:
  • T1588.004 - Digital Certificates
  • T1083 - File and Directory Discovery
  • T1562.001 - Disable or Modify Tools
MITREへのリンク →

LuminousMoth

Score: 13.08
Matched TTPs:
  • T1588.004 - Digital Certificates
  • T1566.002 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1083 - File and Directory Discovery
  • T1608.005 - Link Target
  • T1204.001 - Malicious Link
MITREへのリンク →

BlackTech

Score: 5.96
Matched TTPs:
  • T1588.004 - Digital Certificates
  • T1566.002 - Spearphishing Link
  • T1204.001 - Malicious Link
MITREへのリンク →

Axiom

Score: 12.18
Matched TTPs:
  • T1583.002 - DNS Server
  • T1546.008 - Accessibility Features
  • T1566 - Phishing
  • T1189 - Drive-by Compromise
MITREへのリンク →

HEXANE

Score: 28.41
Matched TTPs:
  • T1583.002 - DNS Server
  • T1586.002 - Email Accounts
  • T1608.001 - Upload Malware
  • T1555 - Credentials from Password Stores
  • T1010 - Application Window Discovery
  • T1589 - Gather Victim Identity Information
  • T1555.003 - Credentials from Web Browsers
  • T1585.002 - Email Accounts
  • T1589.002 - Email Addresses
  • T1534 - Internal Spearphishing
MITREへのリンク →

RedCurl

Score: 9.44
Matched TTPs:
  • T1114.001 - Local Email Collection
  • T1566.002 - Spearphishing Link
  • T1555.003 - Credentials from Web Browsers
  • T1083 - File and Directory Discovery
  • T1204.001 - Malicious Link
MITREへのリンク →

APT1

Score: 10.30
Matched TTPs:
  • T1114.001 - Local Email Collection
  • T1566.002 - Spearphishing Link
  • T1585.002 - Email Accounts
  • T1584.001 - Domains
MITREへのリンク →

Chimera

Score: 12.56
Matched TTPs:
  • T1114.001 - Local Email Collection
  • T1083 - File and Directory Discovery
  • T1110.004 - Credential Stuffing
  • T1589.001 - Credentials
MITREへのリンク →

Winter Vivern

Score: 11.33
Matched TTPs:
  • T1114.001 - Local Email Collection
  • T1083 - File and Directory Discovery
  • T1584.006 - Web Services
  • T1189 - Drive-by Compromise
  • T1204.001 - Malicious Link
MITREへのリンク →

MuddyWater

Score: 22.73
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1555 - Credentials from Password Stores
  • T1218.003 - CMSTP
  • T1555.003 - Credentials from Web Browsers
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1562.001 - Disable or Modify Tools
  • T1027.004 - Compile After Delivery
  • T1204.001 - Malicious Link
MITREへのリンク →

Confucius

Score: 8.46
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1204.001 - Malicious Link
MITREへのリンク →

Kimsuky

Score: 49.49
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1586.002 - Email Accounts
  • T1608.001 - Upload Malware
  • T1555.003 - Credentials from Web Browsers
  • T1585.002 - Email Accounts
  • T1589.002 - Email Addresses
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
  • T1657 - Financial Theft
  • T1583.006 - Web Services
  • T1534 - Internal Spearphishing
  • T1566 - Phishing
  • T1562.001 - Disable or Modify Tools
  • T1055.012 - Process Hollowing
  • T1656 - Impersonation
  • T1598 - Phishing for Information
  • T1219.002 - Remote Desktop Software
  • T1204.001 - Malicious Link
  • T1584.001 - Domains
MITREへのリンク →

Sidewinder

Score: 12.53
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
  • T1598.002 - Spearphishing Attachment
  • T1204.001 - Malicious Link
MITREへのリンク →

Elderwood

Score: 4.57
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1189 - Drive-by Compromise
  • T1204.001 - Malicious Link
MITREへのリンク →

Machete

Score: 4.57
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1189 - Drive-by Compromise
  • T1204.001 - Malicious Link
MITREへのリンク →

FIN7

Score: 15.32
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1218.005 - Mshta
  • T1608.005 - Link Target
  • T1583.006 - Web Services
  • T1486 - Data Encrypted for Impact
  • T1204.001 - Malicious Link
MITREへのリンク →

Transparent Tribe

Score: 7.86
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1189 - Drive-by Compromise
  • T1204.001 - Malicious Link
  • T1584.001 - Domains
MITREへのリンク →

Evilnum

Score: 8.40
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1555 - Credentials from Password Stores
  • T1219.002 - Remote Desktop Software
  • T1204.001 - Malicious Link
MITREへのリンク →

FIN8

Score: 5.15
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1486 - Data Encrypted for Impact
  • T1204.001 - Malicious Link
MITREへのリンク →

APT32

Score: 20.11
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1589 - Gather Victim Identity Information
  • T1589.002 - Email Addresses
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1189 - Drive-by Compromise
  • T1204.001 - Malicious Link
MITREへのリンク →

APT3

Score: 9.44
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1555.003 - Credentials from Web Browsers
  • T1546.008 - Accessibility Features
  • T1083 - File and Directory Discovery
  • T1204.001 - Malicious Link
MITREへのリンク →

APT33

Score: 7.53
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1555 - Credentials from Password Stores
  • T1555.003 - Credentials from Web Browsers
  • T1204.001 - Malicious Link
MITREへのリンク →

EXOTIC LILY

Score: 12.11
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1585.002 - Email Accounts
  • T1589.002 - Email Addresses
  • T1204.001 - Malicious Link
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Molerats

Score: 4.86
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1555.003 - Credentials from Web Browsers
  • T1204.001 - Malicious Link
MITREへのリンク →

OilRig

Score: 26.98
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1556.002 - Password Filter DLL
  • T1586.002 - Email Accounts
  • T1608.001 - Upload Malware
  • T1555 - Credentials from Password Stores
  • T1555.003 - Credentials from Web Browsers
  • T1137.004 - Outlook Home Page
  • T1555.004 - Windows Credential Manager
  • T1204.001 - Malicious Link
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Windshift

Score: 7.10
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1189 - Drive-by Compromise
  • T1204.001 - Malicious Link
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Cobalt Group

Score: 6.94
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1218.003 - CMSTP
  • T1204.001 - Malicious Link
MITREへのリンク →

TA2541

Score: 14.08
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1562.001 - Disable or Modify Tools
  • T1055.012 - Process Hollowing
  • T1204.001 - Malicious Link
MITREへのリンク →

Earth Lusca

Score: 16.86
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1090 - Proxy
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1584.006 - Web Services
  • T1189 - Drive-by Compromise
  • T1204.001 - Malicious Link
MITREへのリンク →

Storm-1811

Score: 21.35
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1486 - Data Encrypted for Impact
  • T1566.004 - Spearphishing Voice
  • T1667 - Email Bombing
  • T1656 - Impersonation
  • T1219.002 - Remote Desktop Software
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Turla

Score: 19.26
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1583.006 - Web Services
  • T1562.001 - Disable or Modify Tools
  • T1584.006 - Web Services
  • T1555.004 - Windows Credential Manager
  • T1189 - Drive-by Compromise
  • T1204.001 - Malicious Link
MITREへのリンク →

TA577

Score: 5.47
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1586.002 - Email Accounts
  • T1204.001 - Malicious Link
MITREへのリンク →

Patchwork

Score: 13.53
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1598.003 - Spearphishing Link
  • T1555.003 - Credentials from Web Browsers
  • T1083 - File and Directory Discovery
  • T1055.012 - Process Hollowing
  • T1189 - Drive-by Compromise
  • T1204.001 - Malicious Link
MITREへのリンク →

TA505

Score: 10.97
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1555.003 - Credentials from Web Browsers
  • T1562.001 - Disable or Modify Tools
  • T1486 - Data Encrypted for Impact
  • T1204.001 - Malicious Link
MITREへのリンク →

LazyScripter

Score: 9.13
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1204.001 - Malicious Link
MITREへのリンク →

APT42

Score: 14.93
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1070.008 - Clear Mailbox Data
  • T1555.003 - Credentials from Web Browsers
  • T1585.002 - Email Accounts
  • T1656 - Impersonation
MITREへのリンク →

APT39

Score: 6.77
Matched TTPs:
  • T1566.002 - Spearphishing Link
  • T1555 - Credentials from Password Stores
  • T1083 - File and Directory Discovery
  • T1204.001 - Malicious Link
MITREへのリンク →

TeamTNT

Score: 12.13
Matched TTPs:
  • T1070.002 - Clear Linux or Mac System Logs
  • T1071 - Application Layer Protocol
  • T1608.001 - Upload Malware
  • T1083 - File and Directory Discovery
  • T1562.001 - Disable or Modify Tools
MITREへのリンク →

Salt Typhoon

Score: 12.00
Matched TTPs:
  • T1070.002 - Clear Linux or Mac System Logs
  • T1602.002 - Network Device Configuration Dump
  • T1136 - Create Account
MITREへのリンク →

Rocke

Score: 12.48
Matched TTPs:
  • T1070.002 - Clear Linux or Mac System Logs
  • T1071 - Application Layer Protocol
  • T1562.001 - Disable or Modify Tools
  • T1027.004 - Compile After Delivery
MITREへのリンク →

Scattered Spider

Score: 49.71
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1070.008 - Clear Mailbox Data
  • T1589 - Gather Victim Identity Information
  • T1598.004 - Spearphishing Voice
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1657 - Financial Theft
  • T1204 - User Execution
  • T1562.001 - Disable or Modify Tools
  • T1486 - Data Encrypted for Impact
  • T1656 - Impersonation
  • T1598 - Phishing for Information
  • T1213.003 - Code Repositories
  • T1219.002 - Remote Desktop Software
  • T1136 - Create Account
  • T1538 - Cloud Service Dashboard
MITREへのリンク →

Star Blizzard

Score: 15.93
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1586.002 - Email Accounts
  • T1608.001 - Upload Malware
  • T1589 - Gather Victim Identity Information
  • T1585.002 - Email Accounts
  • T1598.002 - Spearphishing Attachment
MITREへのリンク →

Moonstone Sleet

Score: 17.54
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1585.002 - Email Accounts
  • T1589.002 - Email Addresses
  • T1486 - Data Encrypted for Impact
  • T1598 - Phishing for Information
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

CURIUM

Score: 12.66
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1585.002 - Email Accounts
  • T1584.006 - Web Services
  • T1189 - Drive-by Compromise
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

INC Ransom

Score: 13.39
Matched TTPs:
  • T1071 - Application Layer Protocol
  • T1657 - Financial Theft
  • T1566 - Phishing
  • T1562.001 - Disable or Modify Tools
  • T1486 - Data Encrypted for Impact
MITREへのリンク →

Velvet Ant

Score: 6.54
Matched TTPs:
  • T1071 - Application Layer Protocol
  • T1083 - File and Directory Discovery
  • T1562.001 - Disable or Modify Tools
MITREへのリンク →

Strider

Score: 8.26
Matched TTPs:
  • T1556.002 - Password Filter DLL
  • T1564.005 - Hidden File System
MITREへのリンク →

LAPSUS$

Score: 34.94
Matched TTPs:
  • T1586.002 - Email Accounts
  • T1589 - Gather Victim Identity Information
  • T1555.003 - Credentials from Web Browsers
  • T1589.002 - Email Addresses
  • T1598.004 - Spearphishing Voice
  • T1593.003 - Code Repositories
  • T1090 - Proxy
  • T1204 - User Execution
  • T1589.001 - Credentials
  • T1656 - Impersonation
  • T1213.003 - Code Repositories
MITREへのリンク →

IndigoZebra

Score: 4.68
Matched TTPs:
  • T1586.002 - Email Accounts
  • T1583.006 - Web Services
MITREへのリンク →

Gamaredon Group

Score: 24.21
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1491.001 - Internal Defacement
  • T1534 - Internal Spearphishing
  • T1562.001 - Disable or Modify Tools
  • T1027.004 - Compile After Delivery
  • T1204.001 - Malicious Link
MITREへのリンク →

SideCopy

Score: 11.22
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1218.005 - Mshta
  • T1598.002 - Spearphishing Attachment
  • T1584.001 - Domains
MITREへのリンク →

BlackByte

Score: 17.24
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1491.001 - Internal Defacement
  • T1134.003 - Make and Impersonate Token
  • T1562.001 - Disable or Modify Tools
  • T1055.012 - Process Hollowing
  • T1486 - Data Encrypted for Impact
MITREへのリンク →

BITTER

Score: 5.59
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1573 - Encrypted Channel
MITREへのリンク →

Saint Bear

Score: 12.70
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1589.002 - Email Addresses
  • T1583.006 - Web Services
  • T1562.001 - Disable or Modify Tools
  • T1656 - Impersonation
  • T1204.001 - Malicious Link
MITREへのリンク →

Contagious Interview

Score: 35.39
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1589 - Gather Victim Identity Information
  • T1585.002 - Email Accounts
  • T1593.003 - Code Repositories
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1657 - Financial Theft
  • T1583.006 - Web Services
  • T1562.001 - Disable or Modify Tools
  • T1656 - Impersonation
  • T1219.002 - Remote Desktop Software
  • T1204.004 - Malicious Copy and Paste
  • T1204.001 - Malicious Link
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Akira

Score: 11.20
Matched TTPs:
  • T1558 - Steal or Forge Kerberos Tickets
  • T1657 - Financial Theft
  • T1562.001 - Disable or Modify Tools
  • T1486 - Data Encrypted for Impact
MITREへのリンク →

Leafminer

Score: 12.32
Matched TTPs:
  • T1555 - Credentials from Password Stores
  • T1555.003 - Credentials from Web Browsers
  • T1055.013 - Process Doppelgänging
  • T1083 - File and Directory Discovery
  • T1189 - Drive-by Compromise
MITREへのリンク →

Stealth Falcon

Score: 8.34
Matched TTPs:
  • T1555 - Credentials from Password Stores
  • T1555.003 - Credentials from Web Browsers
  • T1555.004 - Windows Credential Manager
MITREへのリンク →

FIN6

Score: 12.88
Matched TTPs:
  • T1555 - Credentials from Password Stores
  • T1555.003 - Credentials from Web Browsers
  • T1562.001 - Disable or Modify Tools
  • T1134 - Access Token Manipulation
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Malteiro

Score: 7.24
Matched TTPs:
  • T1555 - Credentials from Password Stores
  • T1555.003 - Credentials from Web Browsers
  • T1657 - Financial Theft
MITREへのリンク →

APT37

Score: 3.82
Matched TTPs:
  • T1555.003 - Credentials from Web Browsers
  • T1189 - Drive-by Compromise
MITREへのリンク →

Ajax Security Team

Score: 4.58
Matched TTPs:
  • T1555.003 - Credentials from Web Browsers
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Inception

Score: 5.69
Matched TTPs:
  • T1555.003 - Credentials from Web Browsers
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
MITREへのリンク →

Medusa Group

Score: 12.26
Matched TTPs:
  • T1585.002 - Email Accounts
  • T1083 - File and Directory Discovery
  • T1657 - Financial Theft
  • T1583.006 - Web Services
  • T1562.001 - Disable or Modify Tools
  • T1486 - Data Encrypted for Impact
MITREへのリンク →

Indrik Spider

Score: 10.27
Matched TTPs:
  • T1585.002 - Email Accounts
  • T1562.001 - Disable or Modify Tools
  • T1486 - Data Encrypted for Impact
  • T1136 - Create Account
MITREへのリンク →

TA551

Score: 4.86
Matched TTPs:
  • T1589.002 - Email Addresses
  • T1218.005 - Mshta
MITREへのリンク →

Deep Panda

Score: 3.29
Matched TTPs:
  • T1546.008 - Accessibility Features
MITREへのリンク →

Fox Kitten

Score: 6.93
Matched TTPs:
  • T1546.008 - Accessibility Features
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
MITREへのリンク →

Blue Mockingbird

Score: 6.19
Matched TTPs:
  • T1090 - Proxy
  • T1134 - Access Token Manipulation
MITREへのリンク →

Cinnamon Tempest

Score: 4.86
Matched TTPs:
  • T1090 - Proxy
  • T1657 - Financial Theft
MITREへのリンク →

Windigo

Score: 5.41
Matched TTPs:
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1189 - Drive-by Compromise
MITREへのリンク →

POLONIUM

Score: 4.35
Matched TTPs:
  • T1090 - Proxy
  • T1583.006 - Web Services
MITREへのリンク →

Equation

Score: 12.80
Matched TTPs:
  • T1542.002 - Component Firmware
  • T1564.005 - Hidden File System
  • T1480.001 - Environmental Keying
MITREへのリンク →

APT38

Score: 15.44
Matched TTPs:
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
  • T1562.001 - Disable or Modify Tools
  • T1486 - Data Encrypted for Impact
  • T1565.002 - Transmitted Data Manipulation
  • T1189 - Drive-by Compromise
  • T1204.001 - Malicious Link
MITREへのリンク →

Tropic Trooper

Score: 4.92
Matched TTPs:
  • T1083 - File and Directory Discovery
  • T1573 - Encrypted Channel
MITREへのリンク →

Dark Caracal

Score: 5.59
Matched TTPs:
  • T1083 - File and Directory Discovery
  • T1189 - Drive-by Compromise
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Lotus Blossom

Score: 5.14
Matched TTPs:
  • T1083 - File and Directory Discovery
  • T1134 - Access Token Manipulation
MITREへのリンク →

ToddyCat

Score: 3.82
Matched TTPs:
  • T1083 - File and Directory Discovery
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Darkhotel

Score: 3.06
Matched TTPs:
  • T1083 - File and Directory Discovery
  • T1189 - Drive-by Compromise
MITREへのリンク →

Play

Score: 5.62
Matched TTPs:
  • T1083 - File and Directory Discovery
  • T1657 - Financial Theft
  • T1562.001 - Disable or Modify Tools
MITREへのリンク →

BRONZE BUTLER

Score: 4.86
Matched TTPs:
  • T1083 - File and Directory Discovery
  • T1562.001 - Disable or Modify Tools
  • T1189 - Drive-by Compromise
MITREへのリンク →

Storm-0501

Score: 7.79
Matched TTPs:
  • T1657 - Financial Theft
  • T1486 - Data Encrypted for Impact
  • T1219.002 - Remote Desktop Software
MITREへのリンク →

AppleJeus

Score: 5.81
Matched TTPs:
  • T1657 - Financial Theft
  • T1566 - Phishing
MITREへのリンク →

Water Galura

Score: 4.86
Matched TTPs:
  • T1657 - Financial Theft
  • T1486 - Data Encrypted for Impact
MITREへのリンク →

Aquatic Panda

Score: 5.24
Matched TTPs:
  • T1654 - Log Enumeration
  • T1562.001 - Disable or Modify Tools
MITREへのリンク →

TA578

Score: 3.37
Matched TTPs:
  • T1583.006 - Web Services
  • T1204.001 - Malicious Link
MITREへのリンク →

GOLD SOUTHFIELD

Score: 3.29
Matched TTPs:
  • T1566 - Phishing
MITREへのリンク →

Gorgon Group

Score: 4.95
Matched TTPs:
  • T1562.001 - Disable or Modify Tools
  • T1055.012 - Process Hollowing
MITREへのリンク →

Volatile Cedar

Score: 4.13
Matched TTPs:
  • T1595.003 - Wordlist Scanning
MITREへのリンク →

RTM

Score: 4.69
Matched TTPs:
  • T1219.002 - Remote Desktop Software
  • T1189 - Drive-by Compromise
MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Magic Hound

Score: 0.70
Matched TTPs:
  • T1585.002 - Email Accounts
  • T1090 - Proxy
  • T1584.001 - Domains
  • T1071 - Application Layer Protocol
  • T1589.001 - Credentials
  • T1598.003 - Spearphishing Link
  • T1586.002 - Email Accounts
  • T1114.001 - Local Email Collection
  • T1589.002 - Email Addresses
  • T1573 - Encrypted Channel
  • T1204.001 - Malicious Link
  • T1083 - File and Directory Discovery
  • T1566.003 - Spearphishing via Service
  • T1189 - Drive-by Compromise
  • T1590.005 - IP Addresses
  • T1486 - Data Encrypted for Impact
  • T1589 - Gather Victim Identity Information
  • T1562.001 - Disable or Modify Tools
  • T1566.002 - Spearphishing Link
  • T1583.006 - Web Services
MITREへのリンク →

Scattered Spider

Score: 0.69
Matched TTPs:
  • T1657 - Financial Theft
  • T1219.002 - Remote Desktop Software
  • T1598.004 - Spearphishing Voice
  • T1090 - Proxy
  • T1070.008 - Clear Mailbox Data
  • T1598.003 - Spearphishing Link
  • T1589 - Gather Victim Identity Information
  • T1204 - User Execution
  • T1486 - Data Encrypted for Impact
  • T1598 - Phishing for Information
  • T1562.001 - Disable or Modify Tools
  • T1656 - Impersonation
  • T1538 - Cloud Service Dashboard
  • T1136 - Create Account
  • T1083 - File and Directory Discovery
  • T1213.003 - Code Repositories
MITREへのリンク →

Kimsuky

Score: 0.68
Matched TTPs:
  • T1585.002 - Email Accounts
  • T1555.003 - Credentials from Web Browsers
  • T1584.001 - Domains
  • T1534 - Internal Spearphishing
  • T1598.003 - Spearphishing Link
  • T1566 - Phishing
  • T1586.002 - Email Accounts
  • T1589.002 - Email Addresses
  • T1598 - Phishing for Information
  • T1656 - Impersonation
  • T1204.001 - Malicious Link
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
  • T1657 - Financial Theft
  • T1219.002 - Remote Desktop Software
  • T1562.001 - Disable or Modify Tools
  • T1566.002 - Spearphishing Link
  • T1055.012 - Process Hollowing
  • T1583.006 - Web Services
  • T1608.001 - Upload Malware
MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

← Pulse一覧に戻る