라자루스 그룹이 사용한 안티 포렌식 기법 - ASEC BLOG
Tags
attack-pattern: Data Data Hiding - T1320
Show in Graph
Common Information
Type Value
UUID ac3d50f1-8e47-40dc-aad3-582cc83455ce
Fingerprint b37a0d02f718b60f
Analysis status DONE
Considered CTI value 2
Text language
Published Feb. 15, 2023, 2:46 p.m.
Added to db Feb. 15, 2023, 8:50 a.m.
Last updated Nov. 12, 2024, 11:53 a.m.
Headline 라자루스 그룹이 사용한 안티 포렌식 기법
Title 라자루스 그룹이 사용한 안티 포렌식 기법 - ASEC BLOG
Detected Hints/Tags/Attributes 14/1/24
Source URLs
Redirection Url
Details Source https://asec.ahnlab.com/ko/47820/
URL Provider
Details Provider Source level domain
Details ahnlab.com asec.ahnlab.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 18 ASEC https://asec.ahnlab.com/ko/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details File 380 
notepad.exe
Details File 2 
dapowsyncprovider.dll
Details md5 4 
B3E03A41CED8C8BAA56B8B78F1D55C22
Details md5 4 
1E7D604FADD7D481DFADB66B9313865D
Details md5 4 
7870DECBC7578DA1656D1D1FF992313C
Details md5 3 
B457E8E9D92A1B31A4E2197037711783
Details md5 3 
1F1A3FE0A31BD0B17BC63967DE0CCC29
Details md5 3 
C16A6178A4910C6F3263A01929F306B9
Details md5 3 
202A7EEC39951E1C0B1C9D0A2E24A4C4
Details md5 3 
8543667917A318001D0E331AEAE3FB9B
Details md5 3 
CA9B6B3BCE52D7F14BABDBA82345F5B1
Details md5 3 
97BC894205D696023395CBD844FA4E37
Details md5 4 
C7256A0FBAB0F437C3AD4334AA5CDE06
Details md5 4 
FC8B6C05963FD5285BCE6ED51862F125
Details md5 4 
27DB56964E7583E19643BF5C98FFFD52
Details md5 4 
61B3C9878B84706DB5F871B4808E739A
Details md5 4 
6EA4E4AB925A09E4C7A1E80BAE5B9584
Details md5 4 
BD47942E9B6AD87EB5525040DB620756
Details md5 4 
67D306C163B38A06E98DA5711E14C5A7
Details md5 4 
C09B062841E2C4D46C2E5270182D4272
Details md5 4 
747177AAD5AEF020B82C6AEABE5B174F
Details md5 4 
E73EAB80B75887D4E8DD6DF33718E3A5
Details md5 4 
BA741FA4C7B4BB97165644C799E29C99
Details md5 4 
064D696A93A3790BD3A1B8B76BAAEEF3