Attack Activity Analysis Using SSH+TOR Tunnels for Covert Persistence
概要
APT-C-13 (Sandworm), also known as FROZENBARENTS, is a state-sponsored advanced persistent threat group conducting global cyber espionage targeting government agencies, diplomatic departments, energy enterprises, and research organizations. Recently detected samples reveal the group's use of nested SSH and TOR tunnel architecture to establish covert communication channels. The attack begins with spear-phishing emails delivering malicious LNK files disguised as PDF documents. Upon execution, the payload deploys TOR hidden services mapping internal ports (SMB/445, RDP/3389) to onion domains, while SSH services with public key authentication provide encrypted remote access. The malware employs obfs4 protocol to obfuscate TOR traffic, evading deep packet inspection. Persistence is achieved through scheduled tasks masquerading as legitimate applications like Opera GX and Dropbox, establishing an anonymous shadow management infrastructure for sustained intelligence collection.
Created: 2026-04-29
Indicators
類似Pulses
類似するPulseは見つかりませんでした。
このPulseに関連する脅威アクター (事実ベース)
Score: 17.83
Matched TTPs:
- T1560.001 - Archive via Utility
- T1027.008 - Stripped Payloads
- T1140 - Deobfuscate/Decode Files or Information
- T1555.003 - Credentials from Web Browsers
- T1027.016 - Junk Code Insertion
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1039 - Data from Network Shared Drive
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 18.77
Matched TTPs:
- T1560.001 - Archive via Utility
- T1491.002 - External Defacement
- T1584.008 - Network Devices
- T1140 - Deobfuscate/Decode Files or Information
- T1558 - Steal or Forge Kerberos Tickets
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1174 - Password Filter DLL
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 25.71
Matched TTPs:
- T1560.001 - Archive via Utility
- T1123 - Audio Capture
- T1584.008 - Network Devices
- T1684 - Social Engineering
- T1038 - DLL Search Order Hijacking
- T1183 - Image File Execution Options Injection
- T1590.006 - Network Security Appliances
- T1597 - Search Closed Sources
- T1134 - Access Token Manipulation
- T1668 - Exclusive Control
- T1556 - Modify Authentication Process
MITREへのリンク →
Score: 14.70
Matched TTPs:
- T1560.001 - Archive via Utility
- T1491.002 - External Defacement
- T1027.016 - Junk Code Insertion
- T1051 - Shared Webroot
- T1039 - Data from Network Shared Drive
- T1027.010 - Command Obfuscation
- T1556 - Modify Authentication Process
MITREへのリンク →
Score: 19.94
Matched TTPs:
- T1560.001 - Archive via Utility
- T1491.002 - External Defacement
- T1140 - Deobfuscate/Decode Files or Information
- T1555.003 - Credentials from Web Browsers
- T1177 - LSASS Driver
- T1045 - Software Packing
- T1219.001 - IDE Tunneling
- T1051 - Shared Webroot
- T1097 - Pass the Ticket
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 7.09
Matched TTPs:
- T1560.001 - Archive via Utility
- T1016.001 - Internet Connection Discovery
- T1045 - Software Packing
MITREへのリンク →
Score: 33.13
Matched TTPs:
- T1560.001 - Archive via Utility
- T1123 - Audio Capture
- T1176 - Software Extensions
- T1140 - Deobfuscate/Decode Files or Information
- T1547.005 - Security Support Provider
- T1555.003 - Credentials from Web Browsers
- T1590.006 - Network Security Appliances
- T1045 - Software Packing
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1212 - Exploitation for Credential Access
- T1039 - Data from Network Shared Drive
- T1134 - Access Token Manipulation
- T1159 - Launch Agent
- T1569.002 - Service Execution
MITREへのリンク →
Score: 9.83
Matched TTPs:
- T1560.001 - Archive via Utility
- T1183 - Image File Execution Options Injection
- T1590.006 - Network Security Appliances
- T1055.004 - Asynchronous Procedure Call
- T1668 - Exclusive Control
MITREへのリンク →
Score: 46.16
Matched TTPs:
- T1560.001 - Archive via Utility
- T1037 - Boot or Logon Initialization Scripts
- T1016.001 - Internet Connection Discovery
- T1606.002 - SAML Tokens
- T1566.002 - Spearphishing Link
- T1058 - Service Registry Permissions Weakness
- T1091 - Replication Through Removable Media
- T1555.003 - Credentials from Web Browsers
- T1183 - Image File Execution Options Injection
- T1136.001 - Local Account
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1218.012 - Verclsid
- T1136.003 - Cloud Account
- T1027.010 - Command Obfuscation
- T1134 - Access Token Manipulation
- T1159 - Launch Agent
- T1556 - Modify Authentication Process
MITREへのリンク →
Score: 15.73
Matched TTPs:
- T1560.001 - Archive via Utility
- T1123 - Audio Capture
- T1606.002 - SAML Tokens
- T1140 - Deobfuscate/Decode Files or Information
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1552.003 - Shell History
- T1597 - Search Closed Sources
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 25.50
Matched TTPs:
- T1560.001 - Archive via Utility
- T1123 - Audio Capture
- T1195.001 - Compromise Software Dependencies and Development Tools
- T1027.016 - Junk Code Insertion
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1212 - Exploitation for Credential Access
- T1574 - Hijack Execution Flow
- T1134 - Access Token Manipulation
- T1668 - Exclusive Control
MITREへのリンク →
Score: 22.61
Matched TTPs:
- T1560.001 - Archive via Utility
- T1037 - Boot or Logon Initialization Scripts
- T1123 - Audio Capture
- T1499.003 - Application Exhaustion Flood
- T1140 - Deobfuscate/Decode Files or Information
- T1555.003 - Credentials from Web Browsers
- T1685 - Disable or Modify Tools
- T1059.013 - Container CLI/API
MITREへのリンク →
Score: 18.86
Matched TTPs:
- T1560.001 - Archive via Utility
- T1491.002 - External Defacement
- T1195.001 - Compromise Software Dependencies and Development Tools
- T1140 - Deobfuscate/Decode Files or Information
- T1555.003 - Credentials from Web Browsers
- T1219.001 - IDE Tunneling
- T1097 - Pass the Ticket
- T1027.010 - Command Obfuscation
- T1134 - Access Token Manipulation
- T1569.002 - Service Execution
MITREへのリンク →
Score: 11.66
Matched TTPs:
- T1560.001 - Archive via Utility
- T1606.002 - SAML Tokens
- T1219.001 - IDE Tunneling
- T1051 - Shared Webroot
- T1128 - Netsh Helper DLL
- T1027.010 - Command Obfuscation
MITREへのリンク →
Score: 16.76
Matched TTPs:
- T1560.001 - Archive via Utility
- T1584.008 - Network Devices
- T1027.008 - Stripped Payloads
- T1140 - Deobfuscate/Decode Files or Information
- T1684 - Social Engineering
- T1555.003 - Credentials from Web Browsers
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
MITREへのリンク →
Score: 18.22
Matched TTPs:
- T1560.001 - Archive via Utility
- T1584.008 - Network Devices
- T1140 - Deobfuscate/Decode Files or Information
- T1558 - Steal or Forge Kerberos Tickets
- T1555.003 - Credentials from Web Browsers
- T1027.016 - Junk Code Insertion
- T1097 - Pass the Ticket
- T1597 - Search Closed Sources
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 20.13
Matched TTPs:
- T1560.001 - Archive via Utility
- T1123 - Audio Capture
- T1584.008 - Network Devices
- T1140 - Deobfuscate/Decode Files or Information
- T1555.003 - Credentials from Web Browsers
- T1590.006 - Network Security Appliances
- T1055.004 - Asynchronous Procedure Call
- T1174 - Password Filter DLL
- T1134 - Access Token Manipulation
- T1668 - Exclusive Control
MITREへのリンク →
Score: 54.69
Matched TTPs:
- T1560.001 - Archive via Utility
- T1123 - Audio Capture
- T1584.008 - Network Devices
- T1195.001 - Compromise Software Dependencies and Development Tools
- T1140 - Deobfuscate/Decode Files or Information
- T1684 - Social Engineering
- T1590.006 - Network Security Appliances
- T1177 - LSASS Driver
- T1045 - Software Packing
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1041 - Exfiltration Over C2 Channel
- T1097 - Pass the Ticket
- T1208 - Kerberoasting
- T1027 - Obfuscated Files or Information
- T1030 - Data Transfer Size Limits
- T1564.003 - Hidden Window
- T1134 - Access Token Manipulation
- T1668 - Exclusive Control
- T1037.001 - Logon Script (Windows)
- T1055.015 - ListPlanting
MITREへのリンク →
Score: 22.00
Matched TTPs:
- T1560.001 - Archive via Utility
- T1140 - Deobfuscate/Decode Files or Information
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1051 - Shared Webroot
- T1218.012 - Verclsid
- T1597 - Search Closed Sources
- T1059.013 - Container CLI/API
- T1027.010 - Command Obfuscation
- T1159 - Launch Agent
MITREへのリンク →
Score: 37.19
Matched TTPs:
- T1560.001 - Archive via Utility
- T1491.002 - External Defacement
- T1123 - Audio Capture
- T1566.002 - Spearphishing Link
- T1058 - Service Registry Permissions Weakness
- T1140 - Deobfuscate/Decode Files or Information
- T1558 - Steal or Forge Kerberos Tickets
- T1555.003 - Credentials from Web Browsers
- T1027.016 - Junk Code Insertion
- T1219.001 - IDE Tunneling
- T1097 - Pass the Ticket
- T1039 - Data from Network Shared Drive
- T1197 - BITS Jobs
- T1059.012 - Hypervisor CLI
- T1668 - Exclusive Control
- T1588.003 - Code Signing Certificates
MITREへのリンク →
Score: 37.95
Matched TTPs:
- T1560.001 - Archive via Utility
- T1606.002 - SAML Tokens
- T1176 - Software Extensions
- T1684 - Social Engineering
- T1590.006 - Network Security Appliances
- T1045 - Software Packing
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1212 - Exploitation for Credential Access
- T1097 - Pass the Ticket
- T1597 - Search Closed Sources
- T1218.001 - Compiled HTML File
- T1039 - Data from Network Shared Drive
- T1059.012 - Hypervisor CLI
- T1027.010 - Command Obfuscation
- T1134 - Access Token Manipulation
- T1569.002 - Service Execution
MITREへのリンク →
Score: 22.02
Matched TTPs:
- T1560.001 - Archive via Utility
- T1558 - Steal or Forge Kerberos Tickets
- T1592.004 - Client Configurations
- T1219.001 - IDE Tunneling
- T1597 - Search Closed Sources
- T1059.012 - Hypervisor CLI
- T1027.010 - Command Obfuscation
- T1134 - Access Token Manipulation
- T1159 - Launch Agent
- T1591.001 - Determine Physical Locations
MITREへのリンク →
Score: 19.28
Matched TTPs:
- T1560.001 - Archive via Utility
- T1016.001 - Internet Connection Discovery
- T1606.002 - SAML Tokens
- T1140 - Deobfuscate/Decode Files or Information
- T1009 - Binary Padding
- T1219.001 - IDE Tunneling
- T1597 - Search Closed Sources
- T1039 - Data from Network Shared Drive
- T1055.015 - ListPlanting
MITREへのリンク →
Score: 64.07
Matched TTPs:
- T1560.001 - Archive via Utility
- T1037 - Boot or Logon Initialization Scripts
- T1123 - Audio Capture
- T1016.001 - Internet Connection Discovery
- T1606.002 - SAML Tokens
- T1566.002 - Spearphishing Link
- T1091 - Replication Through Removable Media
- T1140 - Deobfuscate/Decode Files or Information
- T1684 - Social Engineering
- T1009 - Binary Padding
- T1555.003 - Credentials from Web Browsers
- T1183 - Image File Execution Options Injection
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1051 - Shared Webroot
- T1218.012 - Verclsid
- T1552.003 - Shell History
- T1041 - Exfiltration Over C2 Channel
- T1055.014 - VDSO Hijacking
- T1597 - Search Closed Sources
- T1027.014 - Polymorphic Code
- T1030 - Data Transfer Size Limits
- T1197 - BITS Jobs
- T1027.010 - Command Obfuscation
- T1668 - Exclusive Control
- T1003.003 - NTDS
MITREへのリンク →
Score: 13.45
Matched TTPs:
- T1560.001 - Archive via Utility
- T1590.006 - Network Security Appliances
- T1177 - LSASS Driver
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1051 - Shared Webroot
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 13.06
Matched TTPs:
- T1560.001 - Archive via Utility
- T1039 - Data from Network Shared Drive
- T1027 - Obfuscated Files or Information
- T1128 - Netsh Helper DLL
- T1134 - Access Token Manipulation
- T1556 - Modify Authentication Process
MITREへのリンク →
Score: 22.32
Matched TTPs:
- T1560.001 - Archive via Utility
- T1123 - Audio Capture
- T1584.008 - Network Devices
- T1195.001 - Compromise Software Dependencies and Development Tools
- T1606.002 - SAML Tokens
- T1027.008 - Stripped Payloads
- T1140 - Deobfuscate/Decode Files or Information
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 17.56
Matched TTPs:
- T1560.001 - Archive via Utility
- T1016.001 - Internet Connection Discovery
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1505 - Server Software Component
- T1134 - Access Token Manipulation
- T1569.002 - Service Execution
MITREへのリンク →
Score: 41.86
Matched TTPs:
- T1560.001 - Archive via Utility
- T1123 - Audio Capture
- T1584.008 - Network Devices
- T1606.002 - SAML Tokens
- T1140 - Deobfuscate/Decode Files or Information
- T1558 - Steal or Forge Kerberos Tickets
- T1547.005 - Security Support Provider
- T1555.003 - Credentials from Web Browsers
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1051 - Shared Webroot
- T1552.003 - Shell History
- T1134.001 - Token Impersonation/Theft
- T1027.010 - Command Obfuscation
- T1668 - Exclusive Control
- T1686.001 - Cloud Firewall
- T1569.002 - Service Execution
MITREへのリンク →
Score: 21.25
Matched TTPs:
- T1560.001 - Archive via Utility
- T1091 - Replication Through Removable Media
- T1140 - Deobfuscate/Decode Files or Information
- T1590.006 - Network Security Appliances
- T1045 - Software Packing
- T1055.004 - Asynchronous Procedure Call
- T1218.012 - Verclsid
- T1218.001 - Compiled HTML File
- T1059.012 - Hypervisor CLI
- T1027.010 - Command Obfuscation
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 42.81
Matched TTPs:
- T1560.001 - Archive via Utility
- T1491.002 - External Defacement
- T1566.002 - Spearphishing Link
- T1140 - Deobfuscate/Decode Files or Information
- T1547.005 - Security Support Provider
- T1009 - Binary Padding
- T1555.003 - Credentials from Web Browsers
- T1183 - Image File Execution Options Injection
- T1590.006 - Network Security Appliances
- T1045 - Software Packing
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1597 - Search Closed Sources
- T1027 - Obfuscated Files or Information
- T1683 - Generate Content
- T1059.012 - Hypervisor CLI
- T1027.010 - Command Obfuscation
- T1134 - Access Token Manipulation
- T1098.002 - Additional Email Delegate Permissions
- T1547.008 - LSASS Driver
MITREへのリンク →
Score: 6.14
Matched TTPs:
- T1560.001 - Archive via Utility
- T1597 - Search Closed Sources
- T1668 - Exclusive Control
MITREへのリンク →
Score: 11.46
Matched TTPs:
- T1560.001 - Archive via Utility
- T1140 - Deobfuscate/Decode Files or Information
- T1055.004 - Asynchronous Procedure Call
- T1552.003 - Shell History
- T1597 - Search Closed Sources
- T1027 - Obfuscated Files or Information
MITREへのリンク →
Score: 16.27
Matched TTPs:
- T1560.001 - Archive via Utility
- T1123 - Audio Capture
- T1137.005 - Outlook Rules
- T1552.003 - Shell History
- T1597 - Search Closed Sources
- T1027 - Obfuscated Files or Information
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 12.50
Matched TTPs:
- T1560.001 - Archive via Utility
- T1140 - Deobfuscate/Decode Files or Information
- T1009 - Binary Padding
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1134 - Access Token Manipulation
- T1547.008 - LSASS Driver
MITREへのリンク →
Score: 12.13
Matched TTPs:
- T1491.002 - External Defacement
- T1219.001 - IDE Tunneling
- T1218.012 - Verclsid
- T1027.014 - Polymorphic Code
- T1027.010 - Command Obfuscation
- T1159 - Launch Agent
MITREへのリンク →
Score: 7.18
Matched TTPs:
- T1491.002 - External Defacement
- T1219.001 - IDE Tunneling
- T1059.012 - Hypervisor CLI
- T1547.008 - LSASS Driver
MITREへのリンク →
Score: 3.36
Matched TTPs:
- T1491.002 - External Defacement
- T1059.012 - Hypervisor CLI
MITREへのリンク →
Score: 9.16
Matched TTPs:
- T1491.002 - External Defacement
- T1058 - Service Registry Permissions Weakness
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1059.012 - Hypervisor CLI
MITREへのリンク →
Score: 4.76
Matched TTPs:
- T1491.002 - External Defacement
- T1059.012 - Hypervisor CLI
- T1027.010 - Command Obfuscation
MITREへのリンク →
Score: 11.42
Matched TTPs:
- T1491.002 - External Defacement
- T1123 - Audio Capture
- T1195.001 - Compromise Software Dependencies and Development Tools
- T1219.001 - IDE Tunneling
- T1591.001 - Determine Physical Locations
MITREへのリンク →
Score: 18.59
Matched TTPs:
- T1491.002 - External Defacement
- T1123 - Audio Capture
- T1140 - Deobfuscate/Decode Files or Information
- T1555.003 - Credentials from Web Browsers
- T1183 - Image File Execution Options Injection
- T1055.014 - VDSO Hijacking
- T1027.014 - Polymorphic Code
- T1059.012 - Hypervisor CLI
- T1027.010 - Command Obfuscation
MITREへのリンク →
Score: 16.93
Matched TTPs:
- T1491.002 - External Defacement
- T1566.002 - Spearphishing Link
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1218.012 - Verclsid
- T1657 - Financial Theft
- T1027.010 - Command Obfuscation
- T1159 - Launch Agent
MITREへのリンク →
Score: 40.95
Matched TTPs:
- T1491.002 - External Defacement
- T1016.001 - Internet Connection Discovery
- T1606.002 - SAML Tokens
- T1009 - Binary Padding
- T1183 - Image File Execution Options Injection
- T1027.016 - Junk Code Insertion
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1218.012 - Verclsid
- T1597 - Search Closed Sources
- T1174 - Password Filter DLL
- T1059.012 - Hypervisor CLI
- T1027.010 - Command Obfuscation
- T1055.015 - ListPlanting
- T1547.008 - LSASS Driver
- T1569.002 - Service Execution
- T1556 - Modify Authentication Process
MITREへのリンク →
Score: 8.40
Matched TTPs:
- T1491.002 - External Defacement
- T1091 - Replication Through Removable Media
- T1597 - Search Closed Sources
- T1030 - Data Transfer Size Limits
MITREへのリンク →
Score: 9.28
Matched TTPs:
- T1491.002 - External Defacement
- T1091 - Replication Through Removable Media
- T1039 - Data from Network Shared Drive
- T1683 - Generate Content
MITREへのリンク →
Score: 11.63
Matched TTPs:
- T1491.002 - External Defacement
- T1091 - Replication Through Removable Media
- T1051 - Shared Webroot
- T1597 - Search Closed Sources
- T1027 - Obfuscated Files or Information
- T1027.010 - Command Obfuscation
MITREへのリンク →
Score: 7.39
Matched TTPs:
- T1491.002 - External Defacement
- T1590.006 - Network Security Appliances
- T1027.010 - Command Obfuscation
- T1569.002 - Service Execution
MITREへのリンク →
Score: 7.58
Matched TTPs:
- T1491.002 - External Defacement
- T1590.006 - Network Security Appliances
- T1027.014 - Polymorphic Code
- T1059.012 - Hypervisor CLI
MITREへのリンク →
Score: 23.78
Matched TTPs:
- T1491.002 - External Defacement
- T1123 - Audio Capture
- T1584.008 - Network Devices
- T1091 - Replication Through Removable Media
- T1140 - Deobfuscate/Decode Files or Information
- T1555.003 - Credentials from Web Browsers
- T1590.006 - Network Security Appliances
- T1055.004 - Asynchronous Procedure Call
- T1039 - Data from Network Shared Drive
- T1059.012 - Hypervisor CLI
- T1134 - Access Token Manipulation
- T1591.001 - Determine Physical Locations
MITREへのリンク →
Score: 14.31
Matched TTPs:
- T1491.002 - External Defacement
- T1091 - Replication Through Removable Media
- T1684 - Social Engineering
- T1218.012 - Verclsid
- T1597 - Search Closed Sources
- T1128 - Netsh Helper DLL
- T1027.010 - Command Obfuscation
MITREへのリンク →
Score: 5.52
Matched TTPs:
- T1491.002 - External Defacement
- T1552.003 - Shell History
- T1027.010 - Command Obfuscation
MITREへのリンク →
Score: 11.68
Matched TTPs:
- T1491.002 - External Defacement
- T1558 - Steal or Forge Kerberos Tickets
- T1027 - Obfuscated Files or Information
- T1030 - Data Transfer Size Limits
- T1547.008 - LSASS Driver
MITREへのリンク →
Score: 12.00
Matched TTPs:
- T1491.002 - External Defacement
- T1140 - Deobfuscate/Decode Files or Information
- T1045 - Software Packing
- T1027.014 - Polymorphic Code
- T1505 - Server Software Component
MITREへのリンク →
Score: 26.89
Matched TTPs:
- T1491.002 - External Defacement
- T1195.001 - Compromise Software Dependencies and Development Tools
- T1058 - Service Registry Permissions Weakness
- T1555.003 - Credentials from Web Browsers
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1136.003 - Cloud Account
- T1683 - Generate Content
- T1128 - Netsh Helper DLL
- T1159 - Launch Agent
MITREへのリンク →
Score: 30.73
Matched TTPs:
- T1491.002 - External Defacement
- T1606.002 - SAML Tokens
- T1091 - Replication Through Removable Media
- T1558 - Steal or Forge Kerberos Tickets
- T1547.005 - Security Support Provider
- T1183 - Image File Execution Options Injection
- T1045 - Software Packing
- T1219.001 - IDE Tunneling
- T1552.003 - Shell History
- T1597 - Search Closed Sources
- T1030 - Data Transfer Size Limits
- T1027.010 - Command Obfuscation
- T1547.008 - LSASS Driver
- T1556 - Modify Authentication Process
MITREへのリンク →
Score: 3.69
Matched TTPs:
- T1491.002 - External Defacement
- T1039 - Data from Network Shared Drive
MITREへのリンク →
Score: 10.74
Matched TTPs:
- T1491.002 - External Defacement
- T1606.002 - SAML Tokens
- T1140 - Deobfuscate/Decode Files or Information
- T1009 - Binary Padding
- T1555.003 - Credentials from Web Browsers
- T1590.006 - Network Security Appliances
MITREへのリンク →
Score: 25.49
Matched TTPs:
- T1491.002 - External Defacement
- T1123 - Audio Capture
- T1606.002 - SAML Tokens
- T1091 - Replication Through Removable Media
- T1558 - Steal or Forge Kerberos Tickets
- T1009 - Binary Padding
- T1071.003 - Mail Protocols
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1051 - Shared Webroot
- T1597 - Search Closed Sources
MITREへのリンク →
Score: 3.39
Matched TTPs:
- T1491.002 - External Defacement
- T1597 - Search Closed Sources
MITREへのリンク →
Score: 47.12
Matched TTPs:
- T1491.002 - External Defacement
- T1123 - Audio Capture
- T1195.001 - Compromise Software Dependencies and Development Tools
- T1606.002 - SAML Tokens
- T1574.014 - AppDomainManager
- T1091 - Replication Through Removable Media
- T1558 - Steal or Forge Kerberos Tickets
- T1009 - Binary Padding
- T1555.003 - Credentials from Web Browsers
- T1590.006 - Network Security Appliances
- T1055.004 - Asynchronous Procedure Call
- T1051 - Shared Webroot
- T1212 - Exploitation for Credential Access
- T1097 - Pass the Ticket
- T1039 - Data from Network Shared Drive
- T1128 - Netsh Helper DLL
- T1027.010 - Command Obfuscation
- T1055.015 - ListPlanting
- T1547.008 - LSASS Driver
- T1556 - Modify Authentication Process
MITREへのリンク →
Score: 44.38
Matched TTPs:
- T1491.002 - External Defacement
- T1566.002 - Spearphishing Link
- T1091 - Replication Through Removable Media
- T1558 - Steal or Forge Kerberos Tickets
- T1684 - Social Engineering
- T1547.005 - Security Support Provider
- T1555.003 - Credentials from Web Browsers
- T1590.006 - Network Security Appliances
- T1592.004 - Client Configurations
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1218.012 - Verclsid
- T1039 - Data from Network Shared Drive
- T1027.014 - Polymorphic Code
- T1174 - Password Filter DLL
- T1059.012 - Hypervisor CLI
- T1027.010 - Command Obfuscation
- T1134 - Access Token Manipulation
- T1668 - Exclusive Control
- T1556 - Modify Authentication Process
MITREへのリンク →
Score: 20.18
Matched TTPs:
- T1491.002 - External Defacement
- T1606.002 - SAML Tokens
- T1566.002 - Spearphishing Link
- T1091 - Replication Through Removable Media
- T1183 - Image File Execution Options Injection
- T1590.006 - Network Security Appliances
- T1027 - Obfuscated Files or Information
- T1197 - BITS Jobs
- T1547.008 - LSASS Driver
MITREへのリンク →
Score: 30.71
Matched TTPs:
- T1123 - Audio Capture
- T1584.008 - Network Devices
- T1195.001 - Compromise Software Dependencies and Development Tools
- T1140 - Deobfuscate/Decode Files or Information
- T1558 - Steal or Forge Kerberos Tickets
- T1555.003 - Credentials from Web Browsers
- T1027.016 - Junk Code Insertion
- T1051 - Shared Webroot
- T1097 - Pass the Ticket
- T1597 - Search Closed Sources
- T1134 - Access Token Manipulation
- T1668 - Exclusive Control
- T1003.003 - NTDS
MITREへのリンク →
Score: 31.37
Matched TTPs:
- T1123 - Audio Capture
- T1606.002 - SAML Tokens
- T1566.002 - Spearphishing Link
- T1091 - Replication Through Removable Media
- T1140 - Deobfuscate/Decode Files or Information
- T1558 - Steal or Forge Kerberos Tickets
- T1555.003 - Credentials from Web Browsers
- T1183 - Image File Execution Options Injection
- T1045 - Software Packing
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1027 - Obfuscated Files or Information
- T1075 - Pass the Hash
- T1027.010 - Command Obfuscation
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 17.24
Matched TTPs:
- T1123 - Audio Capture
- T1684 - Social Engineering
- T1009 - Binary Padding
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1597 - Search Closed Sources
- T1128 - Netsh Helper DLL
- T1569.002 - Service Execution
MITREへのリンク →
Score: 56.64
Matched TTPs:
- T1123 - Audio Capture
- T1685.004 - Disable or Modify Linux Audit System Log
- T1566.002 - Spearphishing Link
- T1583.001 - Domains
- T1547.005 - Security Support Provider
- T1019 - System Firmware
- T1590.006 - Network Security Appliances
- T1045 - Software Packing
- T1219.001 - IDE Tunneling
- T1051 - Shared Webroot
- T1552.003 - Shell History
- T1597 - Search Closed Sources
- T1039 - Data from Network Shared Drive
- T1027 - Obfuscated Files or Information
- T1030 - Data Transfer Size Limits
- T1197 - BITS Jobs
- T1090.004 - Domain Fronting
- T1564.003 - Hidden Window
- T1134 - Access Token Manipulation
- T1027.002 - Software Packing
MITREへのリンク →
Score: 20.31
Matched TTPs:
- T1123 - Audio Capture
- T1547.005 - Security Support Provider
- T1019 - System Firmware
- T1045 - Software Packing
- T1039 - Data from Network Shared Drive
- T1030 - Data Transfer Size Limits
- T1564.003 - Hidden Window
MITREへのリンク →
Score: 43.93
Matched TTPs:
- T1123 - Audio Capture
- T1584.008 - Network Devices
- T1606.002 - SAML Tokens
- T1140 - Deobfuscate/Decode Files or Information
- T1555.003 - Credentials from Web Browsers
- T1027.016 - Junk Code Insertion
- T1177 - LSASS Driver
- T1592.004 - Client Configurations
- T1568 - Dynamic Resolution
- T1036.004 - Masquerade Task or Service
- T1218.012 - Verclsid
- T1039 - Data from Network Shared Drive
- T1683 - Generate Content
- T1223 - Compiled HTML File
- T1547.008 - LSASS Driver
MITREへのリンク →
Score: 6.00
Matched TTPs:
- T1123 - Audio Capture
- T1097 - Pass the Ticket
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 3.41
Matched TTPs:
- T1123 - Audio Capture
- T1140 - Deobfuscate/Decode Files or Information
MITREへのリンク →
Score: 32.54
Matched TTPs:
- T1123 - Audio Capture
- T1584.008 - Network Devices
- T1566.002 - Spearphishing Link
- T1140 - Deobfuscate/Decode Files or Information
- T1009 - Binary Padding
- T1555.003 - Credentials from Web Browsers
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1657 - Financial Theft
- T1041 - Exfiltration Over C2 Channel
- T1097 - Pass the Ticket
- T1531 - Account Access Removal
- T1059.012 - Hypervisor CLI
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 20.45
Matched TTPs:
- T1016.001 - Internet Connection Discovery
- T1597 - Search Closed Sources
- T1039 - Data from Network Shared Drive
- T1128 - Netsh Helper DLL
- T1505 - Server Software Component
- T1134 - Access Token Manipulation
- T1547.008 - LSASS Driver
- T1556 - Modify Authentication Process
MITREへのリンク →
Score: 8.28
Matched TTPs:
- T1682 - Query Public AI Services
- T1091 - Replication Through Removable Media
- T1059.012 - Hypervisor CLI
MITREへのリンク →
Score: 7.64
Matched TTPs:
- T1584.008 - Network Devices
- T1174 - Password Filter DLL
- T1059.012 - Hypervisor CLI
MITREへのリンク →
Score: 10.37
Matched TTPs:
- T1499.003 - Application Exhaustion Flood
- T1140 - Deobfuscate/Decode Files or Information
- T1177 - LSASS Driver
- T1059.012 - Hypervisor CLI
MITREへのリンク →
Score: 31.97
Matched TTPs:
- T1499.003 - Application Exhaustion Flood
- T1091 - Replication Through Removable Media
- T1547.005 - Security Support Provider
- T1183 - Image File Execution Options Injection
- T1027.016 - Junk Code Insertion
- T1590.006 - Network Security Appliances
- T1055.004 - Asynchronous Procedure Call
- T1055.014 - VDSO Hijacking
- T1212 - Exploitation for Credential Access
- T1097 - Pass the Ticket
- T1027.010 - Command Obfuscation
- T1134 - Access Token Manipulation
- T1159 - Launch Agent
MITREへのリンク →
Score: 10.65
Matched TTPs:
- T1195.001 - Compromise Software Dependencies and Development Tools
- T1091 - Replication Through Removable Media
- T1558 - Steal or Forge Kerberos Tickets
- T1218.012 - Verclsid
- T1027.010 - Command Obfuscation
MITREへのリンク →
Score: 14.20
Matched TTPs:
- T1195.001 - Compromise Software Dependencies and Development Tools
- T1684 - Social Engineering
- T1039 - Data from Network Shared Drive
- T1027.014 - Polymorphic Code
- T1128 - Netsh Helper DLL
- T1027.010 - Command Obfuscation
MITREへのリンク →
Score: 27.03
Matched TTPs:
- T1195.001 - Compromise Software Dependencies and Development Tools
- T1606.002 - SAML Tokens
- T1058 - Service Registry Permissions Weakness
- T1091 - Replication Through Removable Media
- T1140 - Deobfuscate/Decode Files or Information
- T1009 - Binary Padding
- T1218.012 - Verclsid
- T1584.005 - Botnet
- T1027 - Obfuscated Files or Information
- T1027.010 - Command Obfuscation
- T1055.015 - ListPlanting
MITREへのリンク →
Score: 12.59
Matched TTPs:
- T1606.002 - SAML Tokens
- T1183 - Image File Execution Options Injection
- T1051 - Shared Webroot
- T1597 - Search Closed Sources
- T1027 - Obfuscated Files or Information
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 12.25
Matched TTPs:
- T1606.002 - SAML Tokens
- T1058 - Service Registry Permissions Weakness
- T1091 - Replication Through Removable Media
- T1219.001 - IDE Tunneling
- T1584.005 - Botnet
MITREへのリンク →
Score: 8.65
Matched TTPs:
- T1606.002 - SAML Tokens
- T1140 - Deobfuscate/Decode Files or Information
- T1009 - Binary Padding
- T1556 - Modify Authentication Process
MITREへのリンク →
Score: 8.62
Matched TTPs:
- T1606.002 - SAML Tokens
- T1058 - Service Registry Permissions Weakness
- T1558 - Steal or Forge Kerberos Tickets
- T1219.001 - IDE Tunneling
MITREへのリンク →
Score: 19.87
Matched TTPs:
- T1685.004 - Disable or Modify Linux Audit System Log
- T1140 - Deobfuscate/Decode Files or Information
- T1552.003 - Shell History
- T1097 - Pass the Ticket
- T1027 - Obfuscated Files or Information
- T1027.014 - Polymorphic Code
- T1090.004 - Domain Fronting
MITREへのリンク →
Score: 11.34
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1183 - Image File Execution Options Injection
- T1027.016 - Junk Code Insertion
- T1584.005 - Botnet
MITREへのリンク →
Score: 11.65
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1558 - Steal or Forge Kerberos Tickets
- T1590.006 - Network Security Appliances
- T1039 - Data from Network Shared Drive
- T1197 - BITS Jobs
MITREへのリンク →
Score: 13.27
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1091 - Replication Through Removable Media
- T1547.005 - Security Support Provider
- T1183 - Image File Execution Options Injection
- T1657 - Financial Theft
MITREへのリンク →
Score: 14.42
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1555.003 - Credentials from Web Browsers
- T1183 - Image File Execution Options Injection
- T1218.001 - Compiled HTML File
- T1059.012 - Hypervisor CLI
- T1547.008 - LSASS Driver
MITREへのリンク →
Score: 6.93
Matched TTPs:
- T1566.002 - Spearphishing Link
- T1219.001 - IDE Tunneling
- T1059.012 - Hypervisor CLI
- T1027.010 - Command Obfuscation
MITREへのリンク →
Score: 11.19
Matched TTPs:
- T1574.014 - AppDomainManager
- T1130 - Install Root Certificate
- T1569.002 - Service Execution
MITREへのリンク →
Score: 23.89
Matched TTPs:
- T1058 - Service Registry Permissions Weakness
- T1091 - Replication Through Removable Media
- T1684 - Social Engineering
- T1045 - Software Packing
- T1219.001 - IDE Tunneling
- T1218.012 - Verclsid
- T1055.014 - VDSO Hijacking
- T1597 - Search Closed Sources
- T1059.013 - Container CLI/API
- T1027.010 - Command Obfuscation
MITREへのリンク →
Score: 13.55
Matched TTPs:
- T1091 - Replication Through Removable Media
- T1590.006 - Network Security Appliances
- T1218.012 - Verclsid
- T1657 - Financial Theft
- T1027.010 - Command Obfuscation
- T1159 - Launch Agent
MITREへのリンク →
Score: 23.39
Matched TTPs:
- T1091 - Replication Through Removable Media
- T1140 - Deobfuscate/Decode Files or Information
- T1684 - Social Engineering
- T1009 - Binary Padding
- T1555.003 - Credentials from Web Browsers
- T1590.006 - Network Security Appliances
- T1134.001 - Token Impersonation/Theft
- T1597 - Search Closed Sources
- T1039 - Data from Network Shared Drive
- T1027 - Obfuscated Files or Information
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 6.78
Matched TTPs:
- T1091 - Replication Through Removable Media
- T1183 - Image File Execution Options Injection
- T1547.008 - LSASS Driver
MITREへのリンク →
Score: 17.04
Matched TTPs:
- T1091 - Replication Through Removable Media
- T1583.001 - Domains
- T1183 - Image File Execution Options Injection
- T1590.006 - Network Security Appliances
- T1128 - Netsh Helper DLL
- T1030 - Data Transfer Size Limits
- T1027.010 - Command Obfuscation
MITREへのリンク →
Score: 10.77
Matched TTPs:
- T1140 - Deobfuscate/Decode Files or Information
- T1009 - Binary Padding
- T1597 - Search Closed Sources
- T1059.013 - Container CLI/API
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 4.97
Matched TTPs:
- T1140 - Deobfuscate/Decode Files or Information
- T1555.003 - Credentials from Web Browsers
- T1055.004 - Asynchronous Procedure Call
MITREへのリンク →
Score: 26.12
Matched TTPs:
- T1140 - Deobfuscate/Decode Files or Information
- T1009 - Binary Padding
- T1555.003 - Credentials from Web Browsers
- T1183 - Image File Execution Options Injection
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1552.003 - Shell History
- T1597 - Search Closed Sources
- T1027 - Obfuscated Files or Information
- T1128 - Netsh Helper DLL
- T1598 - Phishing for Information
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 6.33
Matched TTPs:
- T1140 - Deobfuscate/Decode Files or Information
- T1045 - Software Packing
- T1552.003 - Shell History
MITREへのリンク →
Score: 10.34
Matched TTPs:
- T1140 - Deobfuscate/Decode Files or Information
- T1558 - Steal or Forge Kerberos Tickets
- T1219.001 - IDE Tunneling
- T1218.001 - Compiled HTML File
- T1059.012 - Hypervisor CLI
MITREへのリンク →
Score: 3.24
Matched TTPs:
- T1140 - Deobfuscate/Decode Files or Information
- T1555.003 - Credentials from Web Browsers
MITREへのリンク →
Score: 10.62
Matched TTPs:
- T1558 - Steal or Forge Kerberos Tickets
- T1059.012 - Hypervisor CLI
- T1027.010 - Command Obfuscation
- T1159 - Launch Agent
- T1547.008 - LSASS Driver
MITREへのリンク →
Score: 7.27
Matched TTPs:
- T1558 - Steal or Forge Kerberos Tickets
- T1218.012 - Verclsid
- T1027.014 - Polymorphic Code
MITREへのリンク →
Score: 8.51
Matched TTPs:
- T1558 - Steal or Forge Kerberos Tickets
- T1684 - Social Engineering
- T1039 - Data from Network Shared Drive
- T1059.012 - Hypervisor CLI
MITREへのリンク →
Score: 34.13
Matched TTPs:
- T1684 - Social Engineering
- T1009 - Binary Padding
- T1555.003 - Credentials from Web Browsers
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1218.012 - Verclsid
- T1590 - Gather Victim Network Information
- T1097 - Pass the Ticket
- T1597 - Search Closed Sources
- T1027 - Obfuscated Files or Information
- T1174 - Password Filter DLL
- T1493 - Transmitted Data Manipulation
- T1059.012 - Hypervisor CLI
- T1027.010 - Command Obfuscation
MITREへのリンク →
Score: 5.40
Matched TTPs:
- T1684 - Social Engineering
- T1027.010 - Command Obfuscation
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 5.63
Matched TTPs:
- T1684 - Social Engineering
- T1059.012 - Hypervisor CLI
- T1027.010 - Command Obfuscation
MITREへのリンク →
Score: 9.34
Matched TTPs:
- T1555.003 - Credentials from Web Browsers
- T1177 - LSASS Driver
- T1027.014 - Polymorphic Code
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 7.01
Matched TTPs:
- T1555.003 - Credentials from Web Browsers
- T1212 - Exploitation for Credential Access
- T1039 - Data from Network Shared Drive
MITREへのリンク →
Score: 9.88
Matched TTPs:
- T1027.016 - Junk Code Insertion
- T1219.001 - IDE Tunneling
- T1051 - Shared Webroot
- T1059.012 - Hypervisor CLI
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 7.66
Matched TTPs:
- T1590.006 - Network Security Appliances
- T1219.001 - IDE Tunneling
- T1055.004 - Asynchronous Procedure Call
- T1212 - Exploitation for Credential Access
MITREへのリンク →
Score: 3.01
Matched TTPs:
- T1590.006 - Network Security Appliances
- T1134 - Access Token Manipulation
MITREへのリンク →
Score: 4.44
Matched TTPs:
- T1045 - Software Packing
- T1039 - Data from Network Shared Drive
MITREへのリンク →
Score: 8.15
Matched TTPs:
- T1045 - Software Packing
- T1219.001 - IDE Tunneling
- T1059.012 - Hypervisor CLI
- T1159 - Launch Agent
MITREへのリンク →
Score: 12.80
Matched TTPs:
- T1589.003 - Employee Names
- T1130 - Install Root Certificate
- T1037.001 - Logon Script (Windows)
MITREへのリンク →
Score: 5.04
Matched TTPs:
- T1219.001 - IDE Tunneling
- T1218.012 - Verclsid
- T1027.010 - Command Obfuscation
MITREへのリンク →
Score: 3.50
Matched TTPs:
- T1055.004 - Asynchronous Procedure Call
- T1059.012 - Hypervisor CLI
MITREへのリンク →
Score: 4.86
Matched TTPs:
- T1552.003 - Shell History
- T1027 - Obfuscated Files or Information
MITREへのリンク →
Score: 6.14
Matched TTPs:
- T1552.003 - Shell History
- T1041 - Exfiltration Over C2 Channel
MITREへのリンク →
Score: 3.20
Matched TTPs:
- T1597 - Search Closed Sources
- T1027.010 - Command Obfuscation
MITREへのリンク →
Score: 4.13
Matched TTPs:
- T1531 - Account Access Removal
MITREへのリンク →
Score: 4.15
Matched TTPs:
- T1027.014 - Polymorphic Code
- T1027.010 - Command Obfuscation
MITREへのリンク →
Score: 3.17
Matched TTPs:
- T1059.012 - Hypervisor CLI
- T1027.010 - Command Obfuscation
MITREへのリンク →
このPulseに関連する脅威アクター (推論ベース)
Score: 0.70
Matched TTPs:
- T1218.012 - Verclsid
- T1560.001 - Archive via Utility
- T1091 - Replication Through Removable Media
- T1552.003 - Shell History
- T1016.001 - Internet Connection Discovery
- T1027.010 - Command Obfuscation
- T1123 - Audio Capture
- T1183 - Image File Execution Options Injection
- T1606.002 - SAML Tokens
- T1555.003 - Credentials from Web Browsers
- T1140 - Deobfuscate/Decode Files or Information
- T1009 - Binary Padding
- T1219.001 - IDE Tunneling
- T1668 - Exclusive Control
- T1197 - BITS Jobs
- T1051 - Shared Webroot
- T1037 - Boot or Logon Initialization Scripts
- T1041 - Exfiltration Over C2 Channel
- T1566.002 - Spearphishing Link
- T1684 - Social Engineering
- T1597 - Search Closed Sources
- T1027.014 - Polymorphic Code
- T1055.014 - VDSO Hijacking
- T1003.003 - NTDS
- T1030 - Data Transfer Size Limits
- T1590.006 - Network Security Appliances
MITREへのリンク →
Score: 0.62
Matched TTPs:
- T1027 - Obfuscated Files or Information
- T1090.004 - Domain Fronting
- T1552.003 - Shell History
- T1045 - Software Packing
- T1123 - Audio Capture
- T1583.001 - Domains
- T1039 - Data from Network Shared Drive
- T1547.005 - Security Support Provider
- T1564.003 - Hidden Window
- T1027.002 - Software Packing
- T1219.001 - IDE Tunneling
- T1197 - BITS Jobs
- T1051 - Shared Webroot
- T1685.004 - Disable or Modify Linux Audit System Log
- T1019 - System Firmware
- T1134 - Access Token Manipulation
- T1566.002 - Spearphishing Link
- T1597 - Search Closed Sources
- T1030 - Data Transfer Size Limits
- T1590.006 - Network Security Appliances
MITREへのリンク →
Score: 0.60
Matched TTPs:
- T1560.001 - Archive via Utility
- T1027 - Obfuscated Files or Information
- T1045 - Software Packing
- T1097 - Pass the Ticket
- T1123 - Audio Capture
- T1177 - LSASS Driver
- T1584.008 - Network Devices
- T1140 - Deobfuscate/Decode Files or Information
- T1564.003 - Hidden Window
- T1219.001 - IDE Tunneling
- T1668 - Exclusive Control
- T1134 - Access Token Manipulation
- T1041 - Exfiltration Over C2 Channel
- T1684 - Social Engineering
- T1037.001 - Logon Script (Windows)
- T1208 - Kerberoasting
- T1195.001 - Compromise Software Dependencies and Development Tools
- T1055.004 - Asynchronous Procedure Call
- T1030 - Data Transfer Size Limits
- T1055.015 - ListPlanting
- T1590.006 - Network Security Appliances
MITREへのリンク →
Related CVEs
このPulseに見つかったCVEはありません。
Pulse – 脅威アクター グラフ
← Pulse一覧に戻る
Trusted Design