Common Information
| Type | Value |
|---|---|
| Value |
APT37 |
| Category | |
| Type | Threat Actor Identifier - Apt |
| Misp Type | |
| Description |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2023-05-04 | 6 | ROKRAT Detection: Malware Adopts New Deployment Methods Relying on Large LNK Files - SOC Prime | ||
| Details | Website | 2023-05-04 | 12 | Avast Q1/2023 Threat Report - Avast Threat Labs | ||
| Details | Website | 2023-05-02 | 1 | North Korean APT Gets Around Macro-Blocking With LNK Switch-Up | ||
| Details | Website | 2023-05-02 | 2 | South Korean Lures Used to Deploy ROKRAT Malware | ||
| Details | Website | 2023-05-02 | 1 | North Korea's ScarCruft Deploys RokRAT Malware via LNK File Infection Chains | ||
| Details | Website | 2023-05-02 | 1 | North Korea's ScarCruft Deploys RokRAT Malware via LNK File Infection Chains - RedPacket Security | ||
| Details | Website | 2023-05-02 | 7 | Malware Analysis Digest: April 2023 | ||
| Details | Website | 2023-05-01 | 84 | Chain Reaction: ROKRAT’s Missing Link - Check Point Research | ||
| Details | Website | 2023-05-01 | 1 | ScarCruft Deploys RokRAT via LNK File | Cyware Hacker News | ||
| Details | Website | 2023-04-28 | 4 | Tonto Team Uses Anti-Malware File to Launch Attacks on South Korean Institutions | ||
| Details | Website | 2023-04-27 | 47 | 每周高级威胁情报解读(2023.04.27~05.04) | ||
| Details | Website | 2023-04-26 | 13 | RokRAT Malware Distributed Through LNK Files (*.lnk): RedEyes (ScarCruft) - ASEC BLOG | ||
| Details | Website | 2023-04-21 | 13 | 링크 파일(*.lnk)을 통해 유포되는 RokRAT 악성코드 : RedEyes(ScarCruft) - ASEC BLOG | ||
| Details | Website | 2023-04-19 | 22 | Atomic Red Team Walkthrough — TryHackMe | ||
| Details | Website | 2023-04-19 | 10 | Kimsuky: Infamous Threat Actor Churns Out More Advanced Malware - Zimperium | ||
| Details | Website | 2023-04-19 | 16 | Attackers Are Probing for Zero-Day Vulns in Edge Infrastructure Products | ||
| Details | Website | 2023-04-03 | 17 | Search | arXiv e-print repository | ||
| Details | Website | 2023-03-29 | 12 | Kimsuky Group Distributes Malware Disguised as Profile Template (GitHub) - ASEC BLOG | ||
| Details | Website | 2023-03-27 | 56 | Scarcruft Bolsters Arsenal for targeting individual Android devices | ||
| Details | 2023-03-26 | 17 | Chinotto Backdoor: Technical Analysis of the APT Reaper's Powerful | |||
| Details | Website | 2023-03-24 | 80 | Bluepurple Pulse: week ending March 26th | ||
| Details | Website | 2023-03-23 | 12 | Kimsuky 그룹, 약력 양식 파일로 위장한 악성코드 유포 (GitHub) - ASEC BLOG | ||
| Details | Website | 2023-03-22 | 4 | ScarCruft's Evolving Arsenal: Researchers Reveal New Malware Distribution Techniques | ||
| Details | Website | 2023-03-22 | 4 | ScarCruft's Evolving Arsenal: Researchers Reveal New Malware Distribution Techniques - RedPacket Security | ||
| Details | 2023-03-20 | 54 | PowerPoint Presentation |