ATT&CK Table for Sophisticated Spearphishing Campaign CSA

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

America's Cyber Defense Agency

Summary

See Technical Details section

Technical Details

Table 1 provides a summary of the MITRE ATT&CK techniques observed.

Table 1: MITRE ATT&CK techniques observed

Technique Title	Technique ID
Process Injection: Dynamic-link Library Injection	T1055.001
Ingress Tool Transfer	T1105
User Execution: Malicious Link	T1204.001
Phishing: Spearphishing Link	T1566.002

Revisions

May 28, 2021

This product is provided subject to this Notification and this Privacy & Use policy.

Please share your thoughts

We recently updated our anonymous product survey; we’d welcome your feedback.

ATT&CK Table for Sophisticated Spearphishing Campaign CSA

Summary

Technical Details

Revisions

Please share your thoughts

#StopRansomware: LockBit 3.0 Ransomware Affiliates Exploit CVE 2023-4966 Citrix Bleed Vulnerability

Scattered Spider

#StopRansomware: Rhysida Ransomware

Threat Actors Exploit Atlassian Confluence CVE-2023-22515 for Initial Access to Networks

ATT&CK Table for Sophisticated Spearphishing Campaign CSA

Summary

Technical Details

Revisions

Please share your thoughts

Related Advisories

#StopRansomware: LockBit 3.0 Ransomware Affiliates Exploit CVE 2023-4966 Citrix Bleed Vulnerability

Scattered Spider

#StopRansomware: Rhysida Ransomware

Threat Actors Exploit Atlassian Confluence CVE-2023-22515 for Initial Access to Networks