Tag: information-stealing
2 attack reports | 0 vulnerabilities
Attack reports
Appearance of Kimsuky group's new backdoor (HappyDoor)
Asec Ahnlab analyzes a new backdoor malware called HappyDoor used by the North Korean hacking group Kimsuky in recent email attacks. The malware has evolved over time and contains capabilities for information stealing and remote access. It communicates with command and control servers using encrypt…
Downloadable IOCs 16
Exploring the Depths of Multi-tiered Infrastructure
This report provides an in-depth analysis of SolarMarker, a highly persistent and evolving malware family. It delves into the malware's evolution since 2020, detailing its functionality, evasion tactics, and targeting strategies. The report also highlights the multi-tiered infrastructure supporting…
Downloadable IOCs 45
Appearance of Kimsuky group's new backdoor (HappyDoor)
Asec Ahnlab analyzes a new backdoor malware called HappyDoor used by the North Korean hacking group Kimsuky in recent email attacks. The malware has evolved over time and contains capabilities for information stealing and remote access. It communicates with command and control servers using encrypt…
Downloadable IOCs 16
Exploring the Depths of Multi-tiered Infrastructure
This report provides an in-depth analysis of SolarMarker, a highly persistent and evolving malware family. It delves into the malware's evolution since 2020, detailing its functionality, evasion tactics, and targeting strategies. The report also highlights the multi-tiered infrastructure supporting…
Downloadable IOCs 45