TTPs_2_스피어_피싱으로_정보를_수집하는_공격망_구성_방식.pdf (10 MB)

The available excerpt is an outline for a Korean TTP report about building an attack chain that uses spear phishing to collect information. It frames the activity across MITRE ATT&CK stages including initial access, execution, persistence, privilege escalation, defense evasion, credential access, discovery, collection, lateral movement, command and control, exfiltration, and impact. The table of contents indicates that the full material includes malware analysis and a YARA rule, but the excerpt does not provide actor attribution, victim details, malware names, infrastructure, or specific IOCs.