Lookout Discovers North Korean APT37 Mobile Spyware | Threat Intel
Tags
Common Information
| Type | Value |
|---|---|
| UUID | 562cd277-0a36-4b3d-a645-7f27a1c9c0ea |
| Fingerprint | 341886978e37b2d4 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | March 12, 2025, midnight |
| Added to db | March 12, 2025, 5:10 a.m. |
| Last updated | March 20, 2025, 8:43 p.m. |
| Headline | Lookout Discovers New Spyware by North Korean APT37 |
| Title | Lookout Discovers North Korean APT37 Mobile Spyware | Threat Intel |
| Detected Hints/Tags/Attributes | 67/2/45 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 493 | ✔ | Lookout Threat Lab | https://www.lookout.com/threat-intelligence/article/rss.xml | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1454 | gmail.com |
|
| Details | Domain | 1 | goldensnakeblog.blogspot.com |
|
| Details | Domain | 4 | st0746.net |
|
| Details | Domain | 3 | naverfiles.com |
|
| Details | Domain | 3 | mailcorp.center |
|
| Details | Domain | 4 | nidlogon.com |
|
| Details | Domain | 2 | joinupvts.org |
|
| Details | Domain | 2 | resolveissue.org |
|
| Details | Domain | 2 | crowdon.info |
|
| Details | Domain | 90 | play.google.com |
|
| Details | Domain | 1055 | www.youtube.com |
|
| Details | Domain | 317 | www.virustotal.com |
|
| Details | Domain | 1 | www.kisia.or.kr |
|
| Details | Domain | 115 | malpedia.caad.fkie.fraunhofer.de |
|
| Details | Domain | 11 | noticeofpleadings.com |
|
| Details | 1 | mlyqwl@gmail.com |
||
| Details | File | 3 | privacy-policy.html |
|
| Details | File | 1 | _최종.pdf |
|
| Details | File | 1 | injunc.pdf |
|
| Details | sha1 | 2 | 911d9f05e1c57a745cb0c669f3e1b67ac4a08601 |
|
| Details | sha1 | 2 | cd62a9ab320b4f6be49be11c9b1d2d5519cc4860 |
|
| Details | sha1 | 2 | 2d1537e92878a3a14b5b3f55b32c91b099513ae0 |
|
| Details | sha1 | 2 | f08f036a0c79a53f6b0c9ad84fb6eac1ac79c168 |
|
| Details | sha1 | 2 | df39ab90c89aa77a92295721688b18e7f1fdb38d |
|
| Details | sha1 | 2 | ea6d12e4a465a7a44cbad12659ade8a4999d64d1 |
|
| Details | sha1 | 2 | 1cc97e490b5f8a582b6b03bdba58cb5f1a389e78 |
|
| Details | sha1 | 2 | 1a167b65be75fd0651bbda072c856628973a3c1e |
|
| Details | sha1 | 2 | 985fd1f74eb617b1fea17095f9e991dcaceec170 |
|
| Details | sha1 | 2 | 744e5181e76c68b8b23a19b939942de9e1db1daa |
|
| Details | sha1 | 2 | 062a869caac496d0182decfadc57a23057caa4ab |
|
| Details | sha1 | 2 | b84604cad2f3a80fb50415aa069cce7af381e249 |
|
| Details | sha1 | 2 | 3278324744e14ddf4f4312d375f82b31026f51b5 |
|
| Details | sha1 | 2 | 5639fa1fa389ed32f8a8d1ebada8bbbe03ac5171 |
|
| Details | IPv4 | 1 | 27.255.79.225 |
|
| Details | Threat Actor Identifier - APT | 359 | APT37 |
|
| Details | Threat Actor Identifier - APT | 146 | APT43 |
|
| Details | Threat Actor Identifier - APT | 1 | APT376 |
|
| Details | Url | 1 | https://goldensnakeblog.blogspot.com/2023/02/privacy-policy.html |
|
| Details | Url | 1 | https://play.google.com/store/apps/details?id=com.file.exploer |
|
| Details | Url | 145 | https://www.youtube.com |
|
| Details | Url | 1 | https://www.virustotal.com/gui/ip-address/27.255.79.225/relations |
|
| Details | Url | 1 | https://www.kisia.or.kr/bucket/uploads/2022/12/09/사이버보안 |
|
| Details | Url | 2 | https://malpedia.caad.fkie.fraunhofer.de/details/win.konni |
|
| Details | Url | 2 | https://malpedia.caad.fkie.fraunhofer.de/actor/apt37 |
|
| Details | Url | 1 | https://noticeofpleadings.com/thallium/files/ghaffari |