CPU-Z & HWMonitor, cpuid.com, Watering Hole Attack
概要
On April 9, 2026, the cpuid.com website was compromised in a watering hole attack lasting approximately 19 hours. Download URLs for legitimate system administration tools CPU-Z, HWMonitor, HWMonitor Pro, and Perfmonitor 2 were replaced with links to malicious sites distributing trojanized versions. The malicious installers contained legitimate signed executables paired with DLL files named CRYPTBASE.dll that exploited DLL sideloading for C2 communication and payload delivery. Attackers reused infrastructure and code from a March 2026 fake FileZilla campaign, including the STX RAT as the final payload. Over 150 victims were identified globally, primarily individuals but including organizations in retail, manufacturing, consulting, telecommunications and agriculture sectors. The attack demonstrated poor operational security with reused indicators enabling rapid detection.
Created: 2026-04-13
Indicators
類似Pulses
類似するPulseは見つかりませんでした。
このPulseに関連する脅威アクター (事実ベース)
Score: 18.38
Matched TTPs:
- T1560.001 - Archive via Utility
- T1583.005 - Botnet
- T1190 - Exploit Public-Facing Application
- T1110.003 - Password Spraying
- T1016 - System Network Configuration Discovery
- T1584.005 - Botnet
- T1068 - Exploitation for Privilege Escalation
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 18.64
Matched TTPs:
- T1560.001 - Archive via Utility
- T1056.001 - Keylogging
- T1027.013 - Encrypted/Encoded File
- T1003.002 - Security Account Manager
- T1574.001 - DLL
- T1190 - Exploit Public-Facing Application
- T1016 - System Network Configuration Discovery
- T1078 - Valid Accounts
- T1036.003 - Rename Legitimate Utilities
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 21.99
Matched TTPs:
- T1560.001 - Archive via Utility
- T1003.002 - Security Account Manager
- T1518.002 - Backup Software Discovery
- T1016 - System Network Configuration Discovery
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1018 - Remote System Discovery
- T1550.002 - Pass the Hash
- T1204.001 - Malicious Link
- T1055.001 - Dynamic-link Library Injection
MITREへのリンク →
Score: 13.34
Matched TTPs:
- T1560.001 - Archive via Utility
- T1027.013 - Encrypted/Encoded File
- T1110.003 - Password Spraying
- T1552.001 - Credentials In Files
- T1078 - Valid Accounts
- T1068 - Exploitation for Privilege Escalation
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 15.95
Matched TTPs:
- T1560.001 - Archive via Utility
- T1027.013 - Encrypted/Encoded File
- T1190 - Exploit Public-Facing Application
- T1546.008 - Accessibility Features
- T1552.001 - Credentials In Files
- T1110 - Brute Force
- T1078 - Valid Accounts
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 26.35
Matched TTPs:
- T1560.001 - Archive via Utility
- T1056.001 - Keylogging
- T1584.003 - Virtual Private Server
- T1190 - Exploit Public-Facing Application
- T1589 - Gather Victim Identity Information
- T1016 - System Network Configuration Discovery
- T1584.005 - Botnet
- T1078 - Valid Accounts
- T1068 - Exploitation for Privilege Escalation
- T1018 - Remote System Discovery
- T1596.005 - Scan Databases
MITREへのリンク →
Score: 5.81
Matched TTPs:
- T1560.001 - Archive via Utility
- T1016 - System Network Configuration Discovery
- T1550.002 - Pass the Hash
MITREへのリンク →
Score: 27.90
Matched TTPs:
- T1560.001 - Archive via Utility
- T1587.001 - Malware
- T1598.003 - Spearphishing Link
- T1574.001 - DLL
- T1586.002 - Email Accounts
- T1608.001 - Upload Malware
- T1016 - System Network Configuration Discovery
- T1574.005 - Executable Installer File Permissions Weakness
- T1218.005 - Mshta
- T1052.001 - Exfiltration over USB
- T1018 - Remote System Discovery
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 11.39
Matched TTPs:
- T1560.001 - Archive via Utility
- T1587.001 - Malware
- T1190 - Exploit Public-Facing Application
- T1016 - System Network Configuration Discovery
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 16.70
Matched TTPs:
- T1560.001 - Archive via Utility
- T1574.001 - DLL
- T1110.003 - Password Spraying
- T1016 - System Network Configuration Discovery
- T1078 - Valid Accounts
- T1589.001 - Credentials
- T1018 - Remote System Discovery
- T1550.002 - Pass the Hash
MITREへのリンク →
Score: 16.49
Matched TTPs:
- T1560.001 - Archive via Utility
- T1583.002 - DNS Server
- T1190 - Exploit Public-Facing Application
- T1078 - Valid Accounts
- T1608.003 - Install Digital Certificate
- T1027.004 - Compile After Delivery
MITREへのリンク →
Score: 13.44
Matched TTPs:
- T1560.001 - Archive via Utility
- T1056.001 - Keylogging
- T1027.013 - Encrypted/Encoded File
- T1190 - Exploit Public-Facing Application
- T1110 - Brute Force
- T1078 - Valid Accounts
- T1018 - Remote System Discovery
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 7.57
Matched TTPs:
- T1560.001 - Archive via Utility
- T1587.001 - Malware
- T1552.001 - Credentials In Files
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 11.44
Matched TTPs:
- T1560.001 - Archive via Utility
- T1056.001 - Keylogging
- T1003.002 - Security Account Manager
- T1583.005 - Botnet
- T1190 - Exploit Public-Facing Application
MITREへのリンク →
Score: 14.26
Matched TTPs:
- T1560.001 - Archive via Utility
- T1003.002 - Security Account Manager
- T1190 - Exploit Public-Facing Application
- T1110.003 - Password Spraying
- T1110 - Brute Force
- T1562.001 - Disable or Modify Tools
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 17.86
Matched TTPs:
- T1560.001 - Archive via Utility
- T1003.002 - Security Account Manager
- T1574.001 - DLL
- T1190 - Exploit Public-Facing Application
- T1016 - System Network Configuration Discovery
- T1078 - Valid Accounts
- T1036.003 - Rename Legitimate Utilities
- T1018 - Remote System Discovery
- T1550.002 - Pass the Hash
MITREへのリンク →
Score: 39.14
Matched TTPs:
- T1560.001 - Archive via Utility
- T1056.001 - Keylogging
- T1003.002 - Security Account Manager
- T1574.001 - DLL
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1016 - System Network Configuration Discovery
- T1546.008 - Accessibility Features
- T1071.002 - File Transfer Protocols
- T1110 - Brute Force
- T1078 - Valid Accounts
- T1486 - Data Encrypted for Impact
- T1595.003 - Wordlist Scanning
- T1018 - Remote System Discovery
- T1550.002 - Pass the Hash
- T1596.005 - Scan Databases
MITREへのリンク →
Score: 17.91
Matched TTPs:
- T1560.001 - Archive via Utility
- T1574.001 - DLL
- T1190 - Exploit Public-Facing Application
- T1016 - System Network Configuration Discovery
- T1552.001 - Credentials In Files
- T1218.005 - Mshta
- T1562.001 - Disable or Modify Tools
- T1027.004 - Compile After Delivery
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 41.49
Matched TTPs:
- T1560.001 - Archive via Utility
- T1056.001 - Keylogging
- T1027.013 - Encrypted/Encoded File
- T1598.003 - Spearphishing Link
- T1586.002 - Email Accounts
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1110.003 - Password Spraying
- T1110 - Brute Force
- T1078 - Valid Accounts
- T1068 - Exploitation for Privilege Escalation
- T1589.001 - Credentials
- T1189 - Drive-by Compromise
- T1498 - Network Denial of Service
- T1550.002 - Pass the Hash
- T1137.002 - Office Test
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 26.93
Matched TTPs:
- T1560.001 - Archive via Utility
- T1587.001 - Malware
- T1584.003 - Virtual Private Server
- T1016 - System Network Configuration Discovery
- T1110 - Brute Force
- T1562.001 - Disable or Modify Tools
- T1584.006 - Web Services
- T1068 - Exploitation for Privilege Escalation
- T1189 - Drive-by Compromise
- T1018 - Remote System Discovery
- T1204.001 - Malicious Link
- T1055.001 - Dynamic-link Library Injection
MITREへのリンク →
Score: 3.53
Matched TTPs:
- T1560.001 - Archive via Utility
- T1056.001 - Keylogging
MITREへのリンク →
Score: 12.28
Matched TTPs:
- T1560.001 - Archive via Utility
- T1574.001 - DLL
- T1562.001 - Disable or Modify Tools
- T1189 - Drive-by Compromise
- T1018 - Remote System Discovery
- T1053.002 - At
MITREへのリンク →
Score: 12.82
Matched TTPs:
- T1560.001 - Archive via Utility
- T1587.001 - Malware
- T1190 - Exploit Public-Facing Application
- T1562.004 - Disable or Modify System Firewall
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1068 - Exploitation for Privilege Escalation
MITREへのリンク →
Score: 40.37
Matched TTPs:
- T1560.001 - Archive via Utility
- T1056.001 - Keylogging
- T1587.001 - Malware
- T1598.003 - Spearphishing Link
- T1586.002 - Email Accounts
- T1608.001 - Upload Malware
- T1190 - Exploit Public-Facing Application
- T1562.004 - Disable or Modify System Firewall
- T1016 - System Network Configuration Discovery
- T1552.001 - Credentials In Files
- T1218.005 - Mshta
- T1071.002 - File Transfer Protocols
- T1562.001 - Disable or Modify Tools
- T1593.001 - Social Media
- T1550.002 - Pass the Hash
- T1204.001 - Malicious Link
- T1588.005 - Exploits
MITREへのリンク →
Score: 15.44
Matched TTPs:
- T1560.001 - Archive via Utility
- T1056.001 - Keylogging
- T1574.001 - DLL
- T1016 - System Network Configuration Discovery
- T1546.008 - Accessibility Features
- T1552.001 - Credentials In Files
- T1018 - Remote System Discovery
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 10.36
Matched TTPs:
- T1560.001 - Archive via Utility
- T1078 - Valid Accounts
- T1068 - Exploitation for Privilege Escalation
- T1486 - Data Encrypted for Impact
- T1018 - Remote System Discovery
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 17.97
Matched TTPs:
- T1560.001 - Archive via Utility
- T1056.001 - Keylogging
- T1003.002 - Security Account Manager
- T1587.001 - Malware
- T1583.005 - Botnet
- T1190 - Exploit Public-Facing Application
- T1016 - System Network Configuration Discovery
- T1078 - Valid Accounts
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 8.45
Matched TTPs:
- T1560.001 - Archive via Utility
- T1016 - System Network Configuration Discovery
- T1134 - Access Token Manipulation
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 25.22
Matched TTPs:
- T1560.001 - Archive via Utility
- T1056.001 - Keylogging
- T1003.002 - Security Account Manager
- T1587.001 - Malware
- T1574.001 - DLL
- T1190 - Exploit Public-Facing Application
- T1589 - Gather Victim Identity Information
- T1016 - System Network Configuration Discovery
- T1552.001 - Credentials In Files
- T1134.003 - Make and Impersonate Token
- T1550.002 - Pass the Hash
MITREへのリンク →
Score: 21.46
Matched TTPs:
- T1560.001 - Archive via Utility
- T1574.001 - DLL
- T1608.001 - Upload Malware
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1016 - System Network Configuration Discovery
- T1218.005 - Mshta
- T1584.006 - Web Services
- T1189 - Drive-by Compromise
- T1018 - Remote System Discovery
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 35.82
Matched TTPs:
- T1560.001 - Archive via Utility
- T1056.001 - Keylogging
- T1027.013 - Encrypted/Encoded File
- T1598.003 - Spearphishing Link
- T1586.002 - Email Accounts
- T1190 - Exploit Public-Facing Application
- T1589 - Gather Victim Identity Information
- T1562.004 - Disable or Modify System Firewall
- T1595.002 - Vulnerability Scanning
- T1016 - System Network Configuration Discovery
- T1562.001 - Disable or Modify Tools
- T1486 - Data Encrypted for Impact
- T1589.001 - Credentials
- T1189 - Drive-by Compromise
- T1018 - Remote System Discovery
- T1204.001 - Malicious Link
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 10.46
Matched TTPs:
- T1560.001 - Archive via Utility
- T1574.001 - DLL
- T1595.002 - Vulnerability Scanning
- T1562.001 - Disable or Modify Tools
- T1550.002 - Pass the Hash
MITREへのリンク →
Score: 8.63
Matched TTPs:
- T1560.001 - Archive via Utility
- T1190 - Exploit Public-Facing Application
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1486 - Data Encrypted for Impact
MITREへのリンク →
Score: 13.24
Matched TTPs:
- T1560.001 - Archive via Utility
- T1558 - Steal or Forge Kerberos Tickets
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1486 - Data Encrypted for Impact
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 9.47
Matched TTPs:
- T1560.001 - Archive via Utility
- T1190 - Exploit Public-Facing Application
- T1562.004 - Disable or Modify System Firewall
- T1018 - Remote System Discovery
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 24.23
Matched TTPs:
- T1056.001 - Keylogging
- T1562.004 - Disable or Modify System Firewall
- T1218.005 - Mshta
- T1110 - Brute Force
- T1562.001 - Disable or Modify Tools
- T1486 - Data Encrypted for Impact
- T1036.003 - Rename Legitimate Utilities
- T1565.002 - Transmitted Data Manipulation
- T1189 - Drive-by Compromise
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 4.46
Matched TTPs:
- T1056.001 - Keylogging
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 6.76
Matched TTPs:
- T1056.001 - Keylogging
- T1027.013 - Encrypted/Encoded File
- T1016 - System Network Configuration Discovery
- T1189 - Drive-by Compromise
MITREへのリンク →
Score: 5.77
Matched TTPs:
- T1056.001 - Keylogging
- T1574.001 - DLL
- T1068 - Exploitation for Privilege Escalation
MITREへのリンク →
Score: 23.44
Matched TTPs:
- T1056.001 - Keylogging
- T1027.013 - Encrypted/Encoded File
- T1003.002 - Security Account Manager
- T1574.001 - DLL
- T1608.001 - Upload Malware
- T1190 - Exploit Public-Facing Application
- T1016 - System Network Configuration Discovery
- T1078 - Valid Accounts
- T1068 - Exploitation for Privilege Escalation
- T1189 - Drive-by Compromise
- T1018 - Remote System Discovery
- T1053.002 - At
MITREへのリンク →
Score: 29.98
Matched TTPs:
- T1056.001 - Keylogging
- T1027.013 - Encrypted/Encoded File
- T1587.001 - Malware
- T1574.001 - DLL
- T1562.004 - Disable or Modify System Firewall
- T1110.003 - Password Spraying
- T1016 - System Network Configuration Discovery
- T1218.005 - Mshta
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1036.003 - Rename Legitimate Utilities
- T1189 - Drive-by Compromise
- T1055.001 - Dynamic-link Library Injection
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 3.53
Matched TTPs:
- T1056.001 - Keylogging
- T1027.013 - Encrypted/Encoded File
MITREへのリンク →
Score: 5.80
Matched TTPs:
- T1056.001 - Keylogging
- T1068 - Exploitation for Privilege Escalation
- T1189 - Drive-by Compromise
MITREへのリンク →
Score: 4.72
Matched TTPs:
- T1056.001 - Keylogging
- T1078 - Valid Accounts
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 27.35
Matched TTPs:
- T1056.001 - Keylogging
- T1587.001 - Malware
- T1598.003 - Spearphishing Link
- T1608.001 - Upload Malware
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1584.005 - Botnet
- T1078 - Valid Accounts
- T1486 - Data Encrypted for Impact
- T1499 - Endpoint Denial of Service
- T1018 - Remote System Discovery
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 26.52
Matched TTPs:
- T1056.001 - Keylogging
- T1027.013 - Encrypted/Encoded File
- T1587.001 - Malware
- T1586.002 - Email Accounts
- T1608.001 - Upload Malware
- T1562.004 - Disable or Modify System Firewall
- T1016 - System Network Configuration Discovery
- T1552.001 - Credentials In Files
- T1110 - Brute Force
- T1078 - Valid Accounts
- T1068 - Exploitation for Privilege Escalation
- T1204.001 - Malicious Link
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 9.51
Matched TTPs:
- T1056.001 - Keylogging
- T1608.001 - Upload Malware
- T1070.008 - Clear Mailbox Data
- T1016 - System Network Configuration Discovery
MITREへのリンク →
Score: 21.63
Matched TTPs:
- T1056.001 - Keylogging
- T1583.002 - DNS Server
- T1586.002 - Email Accounts
- T1608.001 - Upload Malware
- T1589 - Gather Victim Identity Information
- T1110.003 - Password Spraying
- T1016 - System Network Configuration Discovery
- T1110 - Brute Force
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 29.23
Matched TTPs:
- T1056.001 - Keylogging
- T1027.013 - Encrypted/Encoded File
- T1598.003 - Spearphishing Link
- T1574.001 - DLL
- T1608.001 - Upload Malware
- T1589 - Gather Victim Identity Information
- T1016 - System Network Configuration Discovery
- T1218.005 - Mshta
- T1068 - Exploitation for Privilege Escalation
- T1036.003 - Rename Legitimate Utilities
- T1189 - Drive-by Compromise
- T1018 - Remote System Discovery
- T1550.002 - Pass the Hash
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 22.65
Matched TTPs:
- T1588.007 - Artificial Intelligence
- T1027.013 - Encrypted/Encoded File
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1589 - Gather Victim Identity Information
- T1562.001 - Disable or Modify Tools
- T1593.001 - Social Media
- T1204.001 - Malicious Link
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 3.93
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1218.005 - Mshta
MITREへのリンク →
Score: 5.88
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1189 - Drive-by Compromise
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 4.72
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1189 - Drive-by Compromise
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 4.72
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1189 - Drive-by Compromise
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 6.86
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1078 - Valid Accounts
- T1053.002 - At
MITREへのリンク →
Score: 19.24
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1586.002 - Email Accounts
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1078 - Valid Accounts
- T1589.001 - Credentials
- T1189 - Drive-by Compromise
- T1204.001 - Malicious Link
- T1055.001 - Dynamic-link Library Injection
MITREへのリンク →
Score: 14.58
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1598.003 - Spearphishing Link
- T1574.001 - DLL
- T1016 - System Network Configuration Discovery
- T1218.005 - Mshta
- T1598.002 - Spearphishing Attachment
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 6.72
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1608.001 - Upload Malware
- T1562.001 - Disable or Modify Tools
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 5.66
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1608.001 - Upload Malware
- T1068 - Exploitation for Privilege Escalation
MITREへのリンク →
Score: 14.52
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1608.001 - Upload Malware
- T1552.001 - Credentials In Files
- T1562.001 - Disable or Modify Tools
- T1486 - Data Encrypted for Impact
- T1204.001 - Malicious Link
- T1055.001 - Dynamic-link Library Injection
MITREへのリンク →
Score: 4.80
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1574.001 - DLL
- T1016 - System Network Configuration Discovery
MITREへのリンク →
Score: 6.56
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1574.001 - DLL
- T1016 - System Network Configuration Discovery
- T1189 - Drive-by Compromise
MITREへのリンク →
Score: 9.06
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1608.001 - Upload Malware
- T1218.005 - Mshta
- T1562.001 - Disable or Modify Tools
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 4.52
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1055.001 - Dynamic-link Library Injection
MITREへのリンク →
Score: 12.73
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1574.001 - DLL
- T1486 - Data Encrypted for Impact
- T1566.004 - Spearphishing Voice
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 6.91
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1190 - Exploit Public-Facing Application
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 11.86
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1574.001 - DLL
- T1016 - System Network Configuration Discovery
- T1052.001 - Exfiltration over USB
- T1055.001 - Dynamic-link Library Injection
MITREへのリンク →
Score: 5.42
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1574.001 - DLL
- T1068 - Exploitation for Privilege Escalation
MITREへのリンク →
Score: 8.97
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1587.001 - Malware
- T1190 - Exploit Public-Facing Application
- T1562.004 - Disable or Modify System Firewall
- T1016 - System Network Configuration Discovery
MITREへのリンク →
Score: 20.52
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1562.004 - Disable or Modify System Firewall
- T1595.002 - Vulnerability Scanning
- T1016 - System Network Configuration Discovery
- T1552.001 - Credentials In Files
- T1562.001 - Disable or Modify Tools
- T1595.001 - Scanning IP Blocks
MITREへのリンク →
Score: 6.32
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1562.001 - Disable or Modify Tools
- T1055.001 - Dynamic-link Library Injection
MITREへのリンク →
Score: 14.45
Matched TTPs:
- T1027.013 - Encrypted/Encoded File
- T1587.001 - Malware
- T1598.003 - Spearphishing Link
- T1608.001 - Upload Malware
- T1016 - System Network Configuration Discovery
- T1486 - Data Encrypted for Impact
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 10.74
Matched TTPs:
- T1003.002 - Security Account Manager
- T1574.001 - DLL
- T1036.003 - Rename Legitimate Utilities
- T1189 - Drive-by Compromise
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 36.27
Matched TTPs:
- T1003.002 - Security Account Manager
- T1587.001 - Malware
- T1586.002 - Email Accounts
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1110.003 - Password Spraying
- T1546.008 - Accessibility Features
- T1098.005 - Device Registration
- T1218.005 - Mshta
- T1078 - Valid Accounts
- T1068 - Exploitation for Privilege Escalation
- T1027.006 - HTML Smuggling
- T1204.001 - Malicious Link
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 27.42
Matched TTPs:
- T1003.002 - Security Account Manager
- T1598.003 - Spearphishing Link
- T1190 - Exploit Public-Facing Application
- T1562.004 - Disable or Modify System Firewall
- T1595.002 - Vulnerability Scanning
- T1016 - System Network Configuration Discovery
- T1598.002 - Spearphishing Attachment
- T1071.002 - File Transfer Protocols
- T1110 - Brute Force
- T1078 - Valid Accounts
- T1189 - Drive-by Compromise
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 28.80
Matched TTPs:
- T1003.002 - Security Account Manager
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1110.003 - Password Spraying
- T1552.001 - Credentials In Files
- T1110 - Brute Force
- T1562.001 - Disable or Modify Tools
- T1595.001 - Scanning IP Blocks
- T1018 - Remote System Discovery
- T1550.002 - Pass the Hash
- T1588.005 - Exploits
MITREへのリンク →
Score: 19.95
Matched TTPs:
- T1583.002 - DNS Server
- T1190 - Exploit Public-Facing Application
- T1546.008 - Accessibility Features
- T1584.005 - Botnet
- T1078 - Valid Accounts
- T1189 - Drive-by Compromise
- T1001.002 - Steganography
MITREへのリンク →
Score: 11.72
Matched TTPs:
- T1587.001 - Malware
- T1552.001 - Credentials In Files
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1486 - Data Encrypted for Impact
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 11.01
Matched TTPs:
- T1587.001 - Malware
- T1574.001 - DLL
- T1608.001 - Upload Malware
- T1608.005 - Link Target
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 5.91
Matched TTPs:
- T1587.001 - Malware
- T1190 - Exploit Public-Facing Application
- T1562.004 - Disable or Modify System Firewall
MITREへのリンク →
Score: 19.19
Matched TTPs:
- T1587.001 - Malware
- T1608.001 - Upload Malware
- T1190 - Exploit Public-Facing Application
- T1562.004 - Disable or Modify System Firewall
- T1218.005 - Mshta
- T1608.005 - Link Target
- T1078 - Valid Accounts
- T1486 - Data Encrypted for Impact
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 35.52
Matched TTPs:
- T1484.002 - Trust Modification
- T1598.003 - Spearphishing Link
- T1070.008 - Clear Mailbox Data
- T1589 - Gather Victim Identity Information
- T1598.004 - Spearphishing Voice
- T1016 - System Network Configuration Discovery
- T1552.001 - Credentials In Files
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1068 - Exploitation for Privilege Escalation
- T1486 - Data Encrypted for Impact
- T1018 - Remote System Discovery
- T1538 - Cloud Service Dashboard
MITREへのリンク →
Score: 10.47
Matched TTPs:
- T1484.002 - Trust Modification
- T1190 - Exploit Public-Facing Application
- T1110 - Brute Force
- T1486 - Data Encrypted for Impact
MITREへのリンク →
Score: 10.47
Matched TTPs:
- T1598.003 - Spearphishing Link
- T1110.003 - Password Spraying
- T1608.005 - Link Target
- T1078 - Valid Accounts
MITREへのリンク →
Score: 7.38
Matched TTPs:
- T1598.003 - Spearphishing Link
- T1016 - System Network Configuration Discovery
- T1068 - Exploitation for Privilege Escalation
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 15.07
Matched TTPs:
- T1598.003 - Spearphishing Link
- T1586.002 - Email Accounts
- T1608.001 - Upload Malware
- T1589 - Gather Victim Identity Information
- T1598.002 - Spearphishing Attachment
- T1078 - Valid Accounts
MITREへのリンク →
Score: 10.37
Matched TTPs:
- T1598.003 - Spearphishing Link
- T1584.006 - Web Services
- T1189 - Drive-by Compromise
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 7.32
Matched TTPs:
- T1598.003 - Spearphishing Link
- T1574.001 - DLL
- T1189 - Drive-by Compromise
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 4.63
Matched TTPs:
- T1574.001 - DLL
- T1190 - Exploit Public-Facing Application
- T1078 - Valid Accounts
MITREへのリンク →
Score: 5.87
Matched TTPs:
- T1574.001 - DLL
- T1562.004 - Disable or Modify System Firewall
- T1562.001 - Disable or Modify Tools
MITREへのリンク →
Score: 3.50
Matched TTPs:
- T1574.001 - DLL
- T1189 - Drive-by Compromise
MITREへのリンク →
Score: 3.09
Matched TTPs:
- T1574.001 - DLL
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 4.56
Matched TTPs:
- T1574.001 - DLL
- T1190 - Exploit Public-Facing Application
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 11.14
Matched TTPs:
- T1574.001 - DLL
- T1608.001 - Upload Malware
- T1016 - System Network Configuration Discovery
- T1218.005 - Mshta
- T1598.002 - Spearphishing Attachment
MITREへのリンク →
Score: 4.75
Matched TTPs:
- T1574.001 - DLL
- T1016 - System Network Configuration Discovery
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 6.13
Matched TTPs:
- T1574.001 - DLL
- T1190 - Exploit Public-Facing Application
- T1055.001 - Dynamic-link Library Injection
MITREへのリンク →
Score: 16.69
Matched TTPs:
- T1586.002 - Email Accounts
- T1589 - Gather Victim Identity Information
- T1598.004 - Spearphishing Voice
- T1078 - Valid Accounts
- T1068 - Exploitation for Privilege Escalation
- T1589.001 - Credentials
MITREへのリンク →
Score: 4.03
Matched TTPs:
- T1586.002 - Email Accounts
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 5.10
Matched TTPs:
- T1608.001 - Upload Malware
- T1189 - Drive-by Compromise
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 5.67
Matched TTPs:
- T1608.001 - Upload Malware
- T1218.005 - Mshta
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 11.09
Matched TTPs:
- T1608.001 - Upload Malware
- T1218.005 - Mshta
- T1562.001 - Disable or Modify Tools
- T1027.004 - Compile After Delivery
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 20.59
Matched TTPs:
- T1608.001 - Upload Malware
- T1190 - Exploit Public-Facing Application
- T1562.004 - Disable or Modify System Firewall
- T1016 - System Network Configuration Discovery
- T1134.003 - Make and Impersonate Token
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1068 - Exploitation for Privilege Escalation
- T1486 - Data Encrypted for Impact
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 9.70
Matched TTPs:
- T1608.001 - Upload Malware
- T1593.001 - Social Media
- T1204.001 - Malicious Link
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 10.77
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1562.004 - Disable or Modify System Firewall
- T1562.001 - Disable or Modify Tools
- T1027.004 - Compile After Delivery
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 16.92
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1562.004 - Disable or Modify System Firewall
- T1016 - System Network Configuration Discovery
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1486 - Data Encrypted for Impact
- T1650 - Acquire Access
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 10.81
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1584.006 - Web Services
- T1189 - Drive-by Compromise
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 8.19
Matched TTPs:
- T1190 - Exploit Public-Facing Application
- T1595.002 - Vulnerability Scanning
- T1595.003 - Wordlist Scanning
MITREへのリンク →
Score: 3.77
Matched TTPs:
- T1562.004 - Disable or Modify System Firewall
- T1078 - Valid Accounts
MITREへのリンク →
Score: 13.11
Matched TTPs:
- T1110.003 - Password Spraying
- T1055.013 - Process Doppelgänging
- T1552.001 - Credentials In Files
- T1189 - Drive-by Compromise
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 4.83
Matched TTPs:
- T1546.008 - Accessibility Features
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 3.70
Matched TTPs:
- T1218.005 - Mshta
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 3.62
Matched TTPs:
- T1071.002 - File Transfer Protocols
MITREへのリンク →
Score: 5.49
Matched TTPs:
- T1110 - Brute Force
- T1078 - Valid Accounts
- T1018 - Remote System Discovery
MITREへのリンク →
Score: 13.23
Matched TTPs:
- T1562.001 - Disable or Modify Tools
- T1078 - Valid Accounts
- T1068 - Exploitation for Privilege Escalation
- T1134 - Access Token Manipulation
- T1018 - Remote System Discovery
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 3.46
Matched TTPs:
- T1068 - Exploitation for Privilege Escalation
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 5.65
Matched TTPs:
- T1189 - Drive-by Compromise
- T1204.001 - Malicious Link
- T1566.003 - Spearphishing via Service
MITREへのリンク →
Score: 3.13
Matched TTPs:
- T1189 - Drive-by Compromise
- T1204.001 - Malicious Link
MITREへのリンク →
Score: 4.13
Matched TTPs:
- T1564.005 - Hidden File System
MITREへのリンク →
Score: 4.13
Matched TTPs:
- T1564.005 - Hidden File System
MITREへのリンク →
このPulseに関連する脅威アクター (推論ベース)
Score: 0.70
Matched TTPs:
- T1560.001 - Archive via Utility
- T1589.001 - Credentials
- T1550.002 - Pass the Hash
- T1110 - Brute Force
- T1189 - Drive-by Compromise
- T1027.013 - Encrypted/Encoded File
- T1078 - Valid Accounts
- T1068 - Exploitation for Privilege Escalation
- T1598.003 - Spearphishing Link
- T1498 - Network Denial of Service
- T1204.001 - Malicious Link
- T1595.002 - Vulnerability Scanning
- T1110.003 - Password Spraying
- T1586.002 - Email Accounts
- T1056.001 - Keylogging
- T1190 - Exploit Public-Facing Application
- T1137.002 - Office Test
MITREへのリンク →
Score: 0.68
Matched TTPs:
- T1560.001 - Archive via Utility
- T1550.002 - Pass the Hash
- T1016 - System Network Configuration Discovery
- T1587.001 - Malware
- T1218.005 - Mshta
- T1071.002 - File Transfer Protocols
- T1552.001 - Credentials In Files
- T1588.005 - Exploits
- T1562.004 - Disable or Modify System Firewall
- T1598.003 - Spearphishing Link
- T1204.001 - Malicious Link
- T1608.001 - Upload Malware
- T1586.002 - Email Accounts
- T1056.001 - Keylogging
- T1190 - Exploit Public-Facing Application
- T1562.001 - Disable or Modify Tools
- T1593.001 - Social Media
MITREへのリンク →
Score: 0.66
Matched TTPs:
- T1560.001 - Archive via Utility
- T1550.002 - Pass the Hash
- T1110 - Brute Force
- T1016 - System Network Configuration Discovery
- T1596.005 - Scan Databases
- T1071.002 - File Transfer Protocols
- T1078 - Valid Accounts
- T1595.003 - Wordlist Scanning
- T1546.008 - Accessibility Features
- T1018 - Remote System Discovery
- T1595.002 - Vulnerability Scanning
- T1056.001 - Keylogging
- T1486 - Data Encrypted for Impact
- T1574.001 - DLL
- T1190 - Exploit Public-Facing Application
- T1003.002 - Security Account Manager
MITREへのリンク →
Score: 0.61
Matched TTPs:
- T1027.006 - HTML Smuggling
- T1098.005 - Device Registration
- T1587.001 - Malware
- T1218.005 - Mshta
- T1566.003 - Spearphishing via Service
- T1078 - Valid Accounts
- T1068 - Exploitation for Privilege Escalation
- T1546.008 - Accessibility Features
- T1204.001 - Malicious Link
- T1595.002 - Vulnerability Scanning
- T1110.003 - Password Spraying
- T1586.002 - Email Accounts
- T1190 - Exploit Public-Facing Application
- T1003.002 - Security Account Manager
MITREへのリンク →
Score: 0.60
Matched TTPs:
- T1560.001 - Archive via Utility
- T1589.001 - Credentials
- T1589 - Gather Victim Identity Information
- T1016 - System Network Configuration Discovery
- T1566.003 - Spearphishing via Service
- T1189 - Drive-by Compromise
- T1027.013 - Encrypted/Encoded File
- T1562.004 - Disable or Modify System Firewall
- T1598.003 - Spearphishing Link
- T1018 - Remote System Discovery
- T1204.001 - Malicious Link
- T1595.002 - Vulnerability Scanning
- T1586.002 - Email Accounts
- T1056.001 - Keylogging
- T1486 - Data Encrypted for Impact
- T1190 - Exploit Public-Facing Application
- T1562.001 - Disable or Modify Tools
MITREへのリンク →
Score: 0.60
Matched TTPs:
- T1589 - Gather Victim Identity Information
- T1538 - Cloud Service Dashboard
- T1016 - System Network Configuration Discovery
- T1070.008 - Clear Mailbox Data
- T1078 - Valid Accounts
- T1068 - Exploitation for Privilege Escalation
- T1598.003 - Spearphishing Link
- T1562.001 - Disable or Modify Tools
- T1018 - Remote System Discovery
- T1484.002 - Trust Modification
- T1486 - Data Encrypted for Impact
- T1552.001 - Credentials In Files
- T1598.004 - Spearphishing Voice
MITREへのリンク →
Related CVEs
このPulseに見つかったCVEはありません。
Pulse – 脅威アクター グラフ
← Pulse一覧に戻る
Trusted Design