Tag: andariel

2 Attack Reports | 0 Vulnerabilities

Attack reports

APT45: North Korea’s Digital Military Machine

Mandiant provides an overview of the activities of APT45, a cyber threat group attributed with high confidence to North Korea. The report details APT45's transition from traditional espionage campaigns against government and defense sectors to financially motivated operations, including suspected r…
3proxy
andariel
2024-07-26
dprk
maui ransomware
onyx sleet
apt45
stonefly
silent chollima
rifle
shatteredglass
rogueye
Published: July 26, 2024
Downloadable IOCs: 37

Malware Used in Attacks Against Korean Companies

A recent analysis by ASEC discovered attacks exploiting a Korean ERP solution to distribute malware like XcLoader and Xctdoor. The attacks targeted Korean defense and manufacturing companies. The malware was propagated by compromising ERP update servers to install backdoors. Xctdoor captures system…
korea
2024-07-01
lazarus
andariel
xctdoor
xcloader
hotcroissant
Published: July 1, 2024
Downloadable IOCs: 9
Click here to see more Attack Reports