Lazarus Group Resurfaces, Exploiting Log4j Vulnerability and Spreading MagicRAT - SOC Prime
Tags
country: | Canada North Korea Japan |
attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Scheduled Task - T1053.005 Tool - T1588.002 Vulnerabilities - T1588.006 Scheduled Task - T1053 |
Common Information
Type | Value |
---|---|
UUID | b297ffa8-d34a-4b9e-ae66-2b5227a34405 |
Fingerprint | e19af91c65b78b9a |
Analysis status | DONE |
Considered CTI value | 1 |
Text language | |
Published | Sept. 12, 2022, 5:03 p.m. |
Added to db | Sept. 12, 2022, 7:59 p.m. |
Last updated | Dec. 25, 2024, 1:28 p.m. |
Headline | Lazarus Group Resurfaces, Exploiting Log4j Vulnerability and Spreading MagicRAT |
Title | Lazarus Group Resurfaces, Exploiting Log4j Vulnerability and Spreading MagicRAT - SOC Prime |
Detected Hints/Tags/Attributes | 42/2/1 |
Source URLs
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 237 | ✔ | SOC Prime | https://socprime.com/feed/ | 2024-08-30 22:08 |