Trusted Design

Silver Dragon Targets Organizations in Southeast Asia and Europe

概要

Check Point Research has identified a Chinese-nexus advanced persistent threat group named Silver Dragon, targeting organizations in Southeast Asia and Europe since mid-2024. The group, likely operating under APT41, exploits public-facing servers and uses phishing emails for initial access. They deploy custom tools including GearDoor, a backdoor using Google Drive for command and control, SSHcmd for remote access, and SilverScreen for covert screen monitoring. Silver Dragon primarily focuses on government entities, utilizing Cobalt Strike beacons and DNS tunneling for communication. The group's sophisticated tactics and evolving toolkit demonstrate a well-resourced and adaptable threat actor.

Created: 2026-03-04

Indicators

類似Pulses

類似するPulseは見つかりませんでした。

このPulseに関連する脅威アクター (事実ベース)

Mustang Panda

Score: 18.06
Matched TTPs:
  • T1557 - Adversary-in-the-Middle
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1593 - Search Open Websites/Domains
  • T1588.002 - Tool
MITREへのリンク →

Kimsuky

Score: 40.63
Matched TTPs:
  • T1557 - Adversary-in-the-Middle
  • T1598.003 - Spearphishing Link
  • T1007 - System Service Discovery
  • T1608.001 - Upload Malware
  • T1562.004 - Disable or Modify System Firewall
  • T1583.004 - Server
  • T1083 - File and Directory Discovery
  • T1036.004 - Masquerade Task or Service
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1591 - Gather Victim Org Information
  • T1071.002 - File Transfer Protocols
  • T1534 - Internal Spearphishing
  • T1593 - Search Open Websites/Domains
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
MITREへのリンク →

Sea Turtle

Score: 20.49
Matched TTPs:
  • T1557 - Adversary-in-the-Middle
  • T1583.002 - DNS Server
  • T1114.001 - Local Email Collection
  • T1070.002 - Clear Linux or Mac System Logs
  • T1588.002 - Tool
  • T1078 - Valid Accounts
  • T1027.004 - Compile After Delivery
MITREへのリンク →

Contagious Interview

Score: 27.68
Matched TTPs:
  • T1588.007 - Artificial Intelligence
  • T1608.001 - Upload Malware
  • T1589 - Gather Victim Identity Information
  • T1681 - Search Threat Vendor Data
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1583.006 - Web Services
  • T1593 - Search Open Websites/Domains
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

GALLIUM

Score: 8.15
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1583.004 - Server
  • T1588.002 - Tool
  • T1078 - Valid Accounts
MITREへのリンク →

APT29

Score: 24.00
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1110.003 - Password Spraying
  • T1546.008 - Accessibility Features
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1588.002 - Tool
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1665 - Hide Infrastructure
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

FIN13

Score: 9.76
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1589 - Gather Victim Identity Information
  • T1083 - File and Directory Discovery
  • T1036.004 - Masquerade Task or Service
  • T1588.002 - Tool
MITREへのリンク →

Dragonfly

Score: 22.05
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1598.003 - Spearphishing Link
  • T1562.004 - Disable or Modify System Firewall
  • T1591.002 - Business Relationships
  • T1083 - File and Directory Discovery
  • T1598.002 - Spearphishing Attachment
  • T1071.002 - File Transfer Protocols
  • T1588.002 - Tool
  • T1078 - Valid Accounts
MITREへのリンク →

Ke3chang

Score: 15.28
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1071.004 - DNS
  • T1583.005 - Botnet
  • T1007 - System Service Discovery
  • T1083 - File and Directory Discovery
  • T1588.002 - Tool
  • T1078 - Valid Accounts
MITREへのリンク →

Agrius

Score: 7.14
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1110.003 - Password Spraying
  • T1562.001 - Disable or Modify Tools
MITREへのリンク →

APT41

Score: 38.55
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1071.004 - DNS
  • T1542.003 - Bootkit
  • T1546.008 - Accessibility Features
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1036.004 - Masquerade Task or Service
  • T1071.002 - File Transfer Protocols
  • T1588.002 - Tool
  • T1078 - Valid Accounts
  • T1486 - Data Encrypted for Impact
  • T1595.003 - Wordlist Scanning
  • T1213.003 - Code Repositories
  • T1596.005 - Scan Databases
MITREへのリンク →

APT5

Score: 7.74
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1583.005 - Botnet
  • T1083 - File and Directory Discovery
MITREへのリンク →

menuPass

Score: 6.16
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1083 - File and Directory Discovery
  • T1588.002 - Tool
  • T1078 - Valid Accounts
MITREへのリンク →

Threat Group-3390

Score: 13.07
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1608.001 - Upload Malware
  • T1608.002 - Upload Tool
  • T1588.002 - Tool
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
MITREへのリンク →

Wizard Spider

Score: 13.30
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1518.002 - Backup Software Discovery
  • T1036.004 - Masquerade Task or Service
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
  • T1078 - Valid Accounts
MITREへのリンク →

Ember Bear

Score: 9.88
Matched TTPs:
  • T1003.002 - Security Account Manager
  • T1071.004 - DNS
  • T1110.003 - Password Spraying
  • T1562.001 - Disable or Modify Tools
MITREへのリンク →

Axiom

Score: 8.55
Matched TTPs:
  • T1583.002 - DNS Server
  • T1546.008 - Accessibility Features
  • T1078 - Valid Accounts
MITREへのリンク →

HEXANE

Score: 19.81
Matched TTPs:
  • T1583.002 - DNS Server
  • T1608.001 - Upload Malware
  • T1010 - Application Window Discovery
  • T1589 - Gather Victim Identity Information
  • T1110.003 - Password Spraying
  • T1534 - Internal Spearphishing
  • T1588.002 - Tool
MITREへのリンク →

Chimera

Score: 14.87
Matched TTPs:
  • T1071.004 - DNS
  • T1114.001 - Local Email Collection
  • T1007 - System Service Discovery
  • T1110.003 - Password Spraying
  • T1083 - File and Directory Discovery
  • T1588.002 - Tool
  • T1078 - Valid Accounts
MITREへのリンク →

LazyScripter

Score: 9.07
Matched TTPs:
  • T1071.004 - DNS
  • T1608.001 - Upload Malware
  • T1218.005 - Mshta
  • T1583.006 - Web Services
MITREへのリンク →

Cobalt Group

Score: 9.82
Matched TTPs:
  • T1071.004 - DNS
  • T1218.003 - CMSTP
  • T1588.002 - Tool
  • T1068 - Exploitation for Privilege Escalation
MITREへのリンク →

OilRig

Score: 16.48
Matched TTPs:
  • T1071.004 - DNS
  • T1007 - System Service Discovery
  • T1608.001 - Upload Malware
  • T1562.004 - Disable or Modify System Firewall
  • T1588.002 - Tool
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

APT39

Score: 6.32
Matched TTPs:
  • T1071.004 - DNS
  • T1083 - File and Directory Discovery
  • T1588.002 - Tool
  • T1078 - Valid Accounts
MITREへのリンク →

Tropic Trooper

Score: 4.05
Matched TTPs:
  • T1071.004 - DNS
  • T1083 - File and Directory Discovery
MITREへのリンク →

APT18

Score: 5.47
Matched TTPs:
  • T1071.004 - DNS
  • T1083 - File and Directory Discovery
  • T1078 - Valid Accounts
MITREへのリンク →

FIN7

Score: 25.25
Matched TTPs:
  • T1071.004 - DNS
  • T1608.001 - Upload Malware
  • T1562.004 - Disable or Modify System Firewall
  • T1036.004 - Masquerade Task or Service
  • T1218.005 - Mshta
  • T1608.005 - Link Target
  • T1583.006 - Web Services
  • T1591 - Gather Victim Org Information
  • T1588.002 - Tool
  • T1078 - Valid Accounts
  • T1486 - Data Encrypted for Impact
MITREへのリンク →

Lazarus Group

Score: 30.40
Matched TTPs:
  • T1542.003 - Bootkit
  • T1010 - Application Window Discovery
  • T1562.004 - Disable or Modify System Firewall
  • T1110.003 - Password Spraying
  • T1083 - File and Directory Discovery
  • T1036.004 - Masquerade Task or Service
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1591 - Gather Victim Org Information
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
  • T1078 - Valid Accounts
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

APT28

Score: 24.55
Matched TTPs:
  • T1542.003 - Bootkit
  • T1598.003 - Spearphishing Link
  • T1110.003 - Password Spraying
  • T1083 - File and Directory Discovery
  • T1583.006 - Web Services
  • T1591 - Gather Victim Org Information
  • T1588.002 - Tool
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1137.002 - Office Test
MITREへのリンク →

RedCurl

Score: 4.58
Matched TTPs:
  • T1114.001 - Local Email Collection
  • T1083 - File and Directory Discovery
MITREへのリンク →

APT1

Score: 6.66
Matched TTPs:
  • T1114.001 - Local Email Collection
  • T1007 - System Service Discovery
  • T1588.002 - Tool
MITREへのリンク →

Magic Hound

Score: 30.81
Matched TTPs:
  • T1114.001 - Local Email Collection
  • T1598.003 - Spearphishing Link
  • T1589 - Gather Victim Identity Information
  • T1562.004 - Disable or Modify System Firewall
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1036.004 - Masquerade Task or Service
  • T1583.006 - Web Services
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
  • T1486 - Data Encrypted for Impact
  • T1591.001 - Determine Physical Locations
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Winter Vivern

Score: 11.22
Matched TTPs:
  • T1114.001 - Local Email Collection
  • T1056.003 - Web Portal Capture
  • T1083 - File and Directory Discovery
  • T1036.004 - Masquerade Task or Service
MITREへのリンク →

Scattered Spider

Score: 33.78
Matched TTPs:
  • T1484.002 - Trust Modification
  • T1598.003 - Spearphishing Link
  • T1070.008 - Clear Mailbox Data
  • T1589 - Gather Victim Identity Information
  • T1598.004 - Spearphishing Voice
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1486 - Data Encrypted for Impact
  • T1213.003 - Code Repositories
MITREへのリンク →

Storm-0501

Score: 8.57
Matched TTPs:
  • T1484.002 - Trust Modification
  • T1036.004 - Masquerade Task or Service
  • T1486 - Data Encrypted for Impact
MITREへのリンク →

TeamTNT

Score: 18.09
Matched TTPs:
  • T1070.002 - Clear Linux or Mac System Logs
  • T1007 - System Service Discovery
  • T1608.001 - Upload Malware
  • T1562.004 - Disable or Modify System Firewall
  • T1610 - Deploy Container
  • T1083 - File and Directory Discovery
  • T1562.001 - Disable or Modify Tools
MITREへのリンク →

Salt Typhoon

Score: 11.35
Matched TTPs:
  • T1070.002 - Clear Linux or Mac System Logs
  • T1602.002 - Network Device Configuration Dump
  • T1562.004 - Disable or Modify System Firewall
  • T1588.002 - Tool
MITREへのリンク →

Rocke

Score: 11.38
Matched TTPs:
  • T1070.002 - Clear Linux or Mac System Logs
  • T1562.004 - Disable or Modify System Firewall
  • T1562.001 - Disable or Modify Tools
  • T1027.004 - Compile After Delivery
MITREへのリンク →

Sidewinder

Score: 9.72
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
  • T1598.002 - Spearphishing Attachment
MITREへのリンク →

Sandworm Team

Score: 27.64
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1583.004 - Server
  • T1591.002 - Business Relationships
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1593 - Search Open Websites/Domains
  • T1588.002 - Tool
  • T1078 - Valid Accounts
  • T1486 - Data Encrypted for Impact
  • T1499 - Endpoint Denial of Service
MITREへのリンク →

Silent Librarian

Score: 11.32
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1110.003 - Password Spraying
  • T1608.005 - Link Target
  • T1588.002 - Tool
  • T1078 - Valid Accounts
MITREへのリンク →

ZIRCONIUM

Score: 12.79
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1036.004 - Masquerade Task or Service
  • T1583.006 - Web Services
  • T1068 - Exploitation for Privilege Escalation
  • T1665 - Hide Infrastructure
MITREへのリンク →

APT32

Score: 18.05
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1589 - Gather Victim Identity Information
  • T1083 - File and Directory Discovery
  • T1036.004 - Masquerade Task or Service
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1588.002 - Tool
  • T1068 - Exploitation for Privilege Escalation
MITREへのリンク →

Star Blizzard

Score: 16.54
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1589 - Gather Victim Identity Information
  • T1598.002 - Spearphishing Attachment
  • T1593 - Search Open Websites/Domains
  • T1588.002 - Tool
  • T1078 - Valid Accounts
MITREへのリンク →

Moonstone Sleet

Score: 12.58
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1608.001 - Upload Malware
  • T1591 - Gather Victim Org Information
  • T1486 - Data Encrypted for Impact
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

CURIUM

Score: 8.27
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1583.004 - Server
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Patchwork

Score: 4.61
Matched TTPs:
  • T1598.003 - Spearphishing Link
  • T1083 - File and Directory Discovery
  • T1588.002 - Tool
MITREへのリンク →

HAFNIUM

Score: 15.84
Matched TTPs:
  • T1583.005 - Botnet
  • T1110.003 - Password Spraying
  • T1083 - File and Directory Discovery
  • T1583.006 - Web Services
  • T1590 - Gather Victim Network Information
  • T1068 - Exploitation for Privilege Escalation
MITREへのリンク →

BRONZE BUTLER

Score: 6.47
Matched TTPs:
  • T1007 - System Service Discovery
  • T1083 - File and Directory Discovery
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
MITREへのリンク →

Indrik Spider

Score: 11.93
Matched TTPs:
  • T1007 - System Service Discovery
  • T1590 - Gather Victim Network Information
  • T1562.001 - Disable or Modify Tools
  • T1078 - Valid Accounts
  • T1486 - Data Encrypted for Impact
MITREへのリンク →

Turla

Score: 17.05
Matched TTPs:
  • T1007 - System Service Discovery
  • T1584.003 - Virtual Private Server
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1583.006 - Web Services
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
  • T1068 - Exploitation for Privilege Escalation
MITREへのリンク →

Aquatic Panda

Score: 7.26
Matched TTPs:
  • T1007 - System Service Discovery
  • T1036.004 - Masquerade Task or Service
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
MITREへのリンク →

Earth Lusca

Score: 15.32
Matched TTPs:
  • T1007 - System Service Discovery
  • T1608.001 - Upload Malware
  • T1583.004 - Server
  • T1090 - Proxy
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1588.002 - Tool
MITREへのリンク →

Volt Typhoon

Score: 48.50
Matched TTPs:
  • T1007 - System Service Discovery
  • T1070.007 - Clear Network Connection History and Configurations
  • T1584.003 - Virtual Private Server
  • T1010 - Application Window Discovery
  • T1589 - Gather Victim Identity Information
  • T1590.006 - Network Security Appliances
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1591 - Gather Victim Org Information
  • T1590 - Gather Victim Network Information
  • T1593 - Search Open Websites/Domains
  • T1588.002 - Tool
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1587.004 - Exploits
  • T1596.005 - Scan Databases
MITREへのリンク →

admin@338

Score: 3.82
Matched TTPs:
  • T1007 - System Service Discovery
  • T1083 - File and Directory Discovery
MITREへのリンク →

UNC3886

Score: 23.16
Matched TTPs:
  • T1070.007 - Clear Network Connection History and Configurations
  • T1562.004 - Disable or Modify System Firewall
  • T1681 - Search Threat Vendor Data
  • T1083 - File and Directory Discovery
  • T1036.004 - Masquerade Task or Service
  • T1562.001 - Disable or Modify Tools
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1587.004 - Exploits
MITREへのリンク →

TA2541

Score: 8.97
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
MITREへのリンク →

LuminousMoth

Score: 7.97
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1083 - File and Directory Discovery
  • T1608.005 - Link Target
  • T1588.002 - Tool
MITREへのリンク →

Mustard Tempest

Score: 5.26
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1583.004 - Server
MITREへのリンク →

Gamaredon Group

Score: 19.86
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1534 - Internal Spearphishing
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
  • T1027.004 - Compile After Delivery
MITREへのリンク →

SideCopy

Score: 7.94
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1218.005 - Mshta
  • T1598.002 - Spearphishing Attachment
MITREへのリンク →

TA505

Score: 6.96
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
  • T1486 - Data Encrypted for Impact
MITREへのリンク →

BlackByte

Score: 11.97
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1562.004 - Disable or Modify System Firewall
  • T1562.001 - Disable or Modify Tools
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1486 - Data Encrypted for Impact
MITREへのリンク →

BITTER

Score: 7.01
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1036.004 - Masquerade Task or Service
  • T1588.002 - Tool
  • T1068 - Exploitation for Privilege Escalation
MITREへのリンク →

Saint Bear

Score: 5.78
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1583.006 - Web Services
  • T1562.001 - Disable or Modify Tools
MITREへのリンク →

EXOTIC LILY

Score: 9.03
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1597 - Search Closed Sources
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

APT42

Score: 6.95
Matched TTPs:
  • T1608.001 - Upload Malware
  • T1070.008 - Clear Mailbox Data
  • T1588.002 - Tool
MITREへのリンク →

Akira

Score: 10.10
Matched TTPs:
  • T1558 - Steal or Forge Kerberos Tickets
  • T1562.001 - Disable or Modify Tools
  • T1078 - Valid Accounts
  • T1486 - Data Encrypted for Impact
MITREへのリンク →

MuddyWater

Score: 16.05
Matched TTPs:
  • T1218.003 - CMSTP
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
  • T1583.006 - Web Services
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
  • T1027.004 - Compile After Delivery
MITREへのリンク →

Medusa Group

Score: 16.20
Matched TTPs:
  • T1608.002 - Upload Tool
  • T1562.004 - Disable or Modify System Firewall
  • T1083 - File and Directory Discovery
  • T1583.006 - Web Services
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
  • T1078 - Valid Accounts
  • T1486 - Data Encrypted for Impact
MITREへのリンク →

LAPSUS$

Score: 26.00
Matched TTPs:
  • T1589 - Gather Victim Identity Information
  • T1598.004 - Spearphishing Voice
  • T1591.002 - Business Relationships
  • T1090 - Proxy
  • T1552.008 - Chat Messages
  • T1588.002 - Tool
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1213.003 - Code Repositories
MITREへのリンク →

Carbanak

Score: 6.71
Matched TTPs:
  • T1562.004 - Disable or Modify System Firewall
  • T1036.004 - Masquerade Task or Service
  • T1588.002 - Tool
  • T1078 - Valid Accounts
MITREへのリンク →

Moses Staff

Score: 3.19
Matched TTPs:
  • T1562.004 - Disable or Modify System Firewall
  • T1588.002 - Tool
MITREへのリンク →

ToddyCat

Score: 6.16
Matched TTPs:
  • T1562.004 - Disable or Modify System Firewall
  • T1083 - File and Directory Discovery
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

APT38

Score: 15.51
Matched TTPs:
  • T1562.004 - Disable or Modify System Firewall
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
  • T1486 - Data Encrypted for Impact
  • T1565.002 - Transmitted Data Manipulation
MITREへのリンク →

Velvet Ant

Score: 5.44
Matched TTPs:
  • T1562.004 - Disable or Modify System Firewall
  • T1083 - File and Directory Discovery
  • T1562.001 - Disable or Modify Tools
MITREへのリンク →

APT33

Score: 7.12
Matched TTPs:
  • T1110.003 - Password Spraying
  • T1588.002 - Tool
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
MITREへのリンク →

Leafminer

Score: 4.89
Matched TTPs:
  • T1110.003 - Password Spraying
  • T1083 - File and Directory Discovery
  • T1588.002 - Tool
MITREへのリンク →

APT3

Score: 4.58
Matched TTPs:
  • T1546.008 - Accessibility Features
  • T1083 - File and Directory Discovery
MITREへのリンク →

Deep Panda

Score: 3.29
Matched TTPs:
  • T1546.008 - Accessibility Features
MITREへのリンク →

Fox Kitten

Score: 10.45
Matched TTPs:
  • T1546.008 - Accessibility Features
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
  • T1036.004 - Masquerade Task or Service
  • T1078 - Valid Accounts
MITREへのリンク →

CopyKittens

Score: 3.19
Matched TTPs:
  • T1090 - Proxy
  • T1588.002 - Tool
MITREへのリンク →

Blue Mockingbird

Score: 3.19
Matched TTPs:
  • T1090 - Proxy
  • T1588.002 - Tool
MITREへのリンク →

Cinnamon Tempest

Score: 4.61
Matched TTPs:
  • T1090 - Proxy
  • T1588.002 - Tool
  • T1078 - Valid Accounts
MITREへのリンク →

MoustachedBouncer

Score: 4.44
Matched TTPs:
  • T1090 - Proxy
  • T1068 - Exploitation for Privilege Escalation
MITREへのリンク →

Windigo

Score: 3.64
Matched TTPs:
  • T1090 - Proxy
  • T1083 - File and Directory Discovery
MITREへのリンク →

POLONIUM

Score: 6.63
Matched TTPs:
  • T1090 - Proxy
  • T1583.006 - Web Services
  • T1588.002 - Tool
  • T1078 - Valid Accounts
MITREへのリンク →

Equation

Score: 4.54
Matched TTPs:
  • T1542.002 - Component Firmware
MITREへのリンク →

Inception

Score: 4.49
Matched TTPs:
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
  • T1588.002 - Tool
MITREへのリンク →

Dark Caracal

Score: 3.82
Matched TTPs:
  • T1083 - File and Directory Discovery
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Play

Score: 5.37
Matched TTPs:
  • T1083 - File and Directory Discovery
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
  • T1078 - Valid Accounts
MITREへのリンク →

Confucius

Score: 5.65
Matched TTPs:
  • T1083 - File and Directory Discovery
  • T1218.005 - Mshta
  • T1583.006 - Web Services
MITREへのリンク →

FIN6

Score: 10.78
Matched TTPs:
  • T1036.004 - Masquerade Task or Service
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

SilverTerrier

Score: 3.62
Matched TTPs:
  • T1071.002 - File Transfer Protocols
MITREへのリンク →

Leviathan

Score: 8.89
Matched TTPs:
  • T1534 - Internal Spearphishing
  • T1078 - Valid Accounts
  • T1587.004 - Exploits
MITREへのリンク →

Storm-1811

Score: 5.71
Matched TTPs:
  • T1588.002 - Tool
  • T1486 - Data Encrypted for Impact
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

FIN8

Score: 6.71
Matched TTPs:
  • T1588.002 - Tool
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1486 - Data Encrypted for Impact
MITREへのリンク →

INC Ransom

Score: 6.41
Matched TTPs:
  • T1588.002 - Tool
  • T1562.001 - Disable or Modify Tools
  • T1078 - Valid Accounts
  • T1486 - Data Encrypted for Impact
MITREへのリンク →

Volatile Cedar

Score: 4.13
Matched TTPs:
  • T1595.003 - Wordlist Scanning
MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Volt Typhoon

Score: 0.70
Matched TTPs:
  • T1090 - Proxy
  • T1070.007 - Clear Network Connection History and Configurations
  • T1007 - System Service Discovery
  • T1588.002 - Tool
  • T1010 - Application Window Discovery
  • T1596.005 - Scan Databases
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1591 - Gather Victim Org Information
  • T1587.004 - Exploits
  • T1584.003 - Virtual Private Server
  • T1593 - Search Open Websites/Domains
  • T1083 - File and Directory Discovery
  • T1589 - Gather Victim Identity Information
  • T1590 - Gather Victim Network Information
  • T1590.006 - Network Security Appliances
MITREへのリンク →

Kimsuky

Score: 0.59
Matched TTPs:
  • T1562.001 - Disable or Modify Tools
  • T1534 - Internal Spearphishing
  • T1598.003 - Spearphishing Link
  • T1007 - System Service Discovery
  • T1608.001 - Upload Malware
  • T1557 - Adversary-in-the-Middle
  • T1036.004 - Masquerade Task or Service
  • T1218.005 - Mshta
  • T1562.004 - Disable or Modify System Firewall
  • T1583.006 - Web Services
  • T1588.002 - Tool
  • T1591 - Gather Victim Org Information
  • T1583.004 - Server
  • T1593 - Search Open Websites/Domains
  • T1083 - File and Directory Discovery
  • T1071.002 - File Transfer Protocols
MITREへのリンク →

APT41

Score: 0.56
Matched TTPs:
  • T1090 - Proxy
  • T1071.004 - DNS
  • T1546.008 - Accessibility Features
  • T1588.002 - Tool
  • T1036.004 - Masquerade Task or Service
  • T1595.003 - Wordlist Scanning
  • T1542.003 - Bootkit
  • T1003.002 - Security Account Manager
  • T1078 - Valid Accounts
  • T1213.003 - Code Repositories
  • T1083 - File and Directory Discovery
  • T1596.005 - Scan Databases
  • T1486 - Data Encrypted for Impact
  • T1071.002 - File Transfer Protocols
MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

← Pulse一覧に戻る