TT Malware Log

マルウェア / サイバー攻撃 / 解析技術 に関する「個人」の調査・研究のログ

MuddyWater (まとめ)

【辞書】

◆MuddyWater (ATT&CK)
https://attack.mitre.org/groups/G0069/


【ニュース】

◆The MuddyWater APT Group Adds New Tools to Their Arsenal (Bleeping Computer, 2019/06/06 07:00)
https://www.bleepingcomputer.com/news/security/the-muddywater-apt-group-adds-new-tools-to-their-arsenal/
https://malware-log.hatenablog.com/entry/2019/06/06/000000_12

◆MuddyWater Updates POWERSTATS Backdoor For Multi-Stage Attacks (BleepingComputer, 2019/06/10)
https://www.bleepingcomputer.com/news/security/muddywater-updates-powerstats-backdoor-for-multi-stage-attacks/
https://malware-log.hatenablog.com/entry/2019/06/10/000000_13

◆MuddyWater APT group updated its multi-stage PowerShell backdoor Powerstats (SecurityAffairs, 2019/06/11)

The MuddyWater cyber espionage group has used an updated multi-stage PowerShell backdoor in recent cyber attacks.
MuddyWaterサイバースパイグループは、最近のサイバー攻撃で更新多段PowerShellのバックドアを使用しています。

https://securityaffairs.co/wordpress/86953/apt/muddywater-powerstats-v3.html
https://malware-log.hatenablog.com/entry/2019/06/11/000000_10


【ブログ】

◆Muddying the Water: Targeted Attacks in the Middle East (UNIT42(Paloalto), 2017/11/14 13:00)
https://unit42.paloaltonetworks.com/unit42-muddying-the-water-targeted-attacks-in-the-middle-east/
https://malware-log.hatenablog.com/entry/2017/11/14/000000_10

◆Iranian Threat Group Updates Tactics, Techniques and Procedures in Spear Phishing Campaign (FireEye, 2018/03/13)
https://www.fireeye.com/blog/threat-research/2018/03/iranian-threat-group-updates-ttps-in-spear-phishing-campaign.html
https://malware-log.hatenablog.com/entry/2018/03/13/000000_8

◆Another Potential MuddyWater Campaign uses Powershell-based PRB-Backdoor (Trendmicro, 2018/06/14)
https://blog.trendmicro.com/trendlabs-security-intelligence/another-potential-muddywater-campaign-uses-powershell-based-prb-backdoor/
https://malware-log.hatenablog.com/entry/2018/06/14/000000_5


Copyright (C) 谷川哲司 (Tetsuji Tanigawa) 1997 - 2019