Lazarus Sub-Group Labyrinth Chollima Uncovered as Mastermind in 3CX Supply Chain Attack
Tags
cmtmf-attack-pattern: Supply Chain Compromise
maec-delivery-vectors: Watering Hole
attack-pattern: Dll Side-Loading - T1574.002 Malware - T1587.001 Malware - T1588.001 Supply Chain Compromise - T1474 Dll Side-Loading - T1073 Supply Chain Compromise - T1195 Supply Chain Compromise
Show in Graph
Common Information
Type Value
UUID 939b1046-a5f4-4d5d-9404-2dbc3682fdca
Fingerprint 51eb91f9d8a9293
Analysis status DONE
Considered CTI value 1
Text language
Published April 12, 2023, 9:36 a.m.
Added to db April 12, 2023, 6:46 a.m.
Last updated Nov. 17, 2024, 6:55 p.m.
Headline Lazarus Sub-Group Labyrinth Chollima Uncovered as Mastermind in 3CX Supply Chain Attack
Title Lazarus Sub-Group Labyrinth Chollima Uncovered as Mastermind in 3CX Supply Chain Attack
Detected Hints/Tags/Attributes 37/3/8
Source URLs
Redirection Url
Details Source https://thehackernews.com/2023/04/lazarus-sub-group-labyrinth-chollima.html
URL Provider
Details Provider Source level domain
Details thehackernews.com thehackernews.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 118 The Hacker News https://feeds.feedburner.com/TheHackersNews 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 24 
cve-2023-29059
Details Domain 32 
azureonlinecloud.com
Details Domain 33 
akamaicontainer.com
Details Domain 41 
journalide.org
Details Domain 4 
msboxonline.com
Details File 28 
wlbsctrl.dll
Details File 1122 
svchost.exe
Details Mandiant Uncategorized Groups 59 
UNC4736