라자루스(Lazarus) APT 그룹, 신상명세서 문서로 위장한 공격 수행
Tags
Show in Graph
Common Information
Type Value
UUID eef0b292-4b2c-4de4-b03a-d769ce1a1f3b
Fingerprint 87845ad22cfb6d7c
Analysis status DONE
Considered CTI value 2
Text language
Published July 15, 2019, 4:54 p.m.
Added to db Jan. 30, 2023, 4:34 p.m.
Last updated Nov. 2, 2024, 12:10 a.m.
Headline
Title 라자루스(Lazarus) APT 그룹, 신상명세서 문서로 위장한 공격 수행
Detected Hints/Tags/Attributes 10/0/21
Source URLs
Redirection Url
Details Source https://blog.alyac.co.kr/2418
URL Provider
Details Provider Source level domain
Details alyac.co.kr blog.alyac.co.kr
Attributes
Details Type #Events CTI Value
Details Domain 10 
bin0001.ps
Details Domain 3 
technokain.com
Details Domain 1 
www.weeklyexperts.com
Details Domain 1 
www.payngrab.com
Details Domain 1 
www.adhyatmikpunarjagran.org
Details File 5 
'진실겜.xls
Details File 9 
'bin0001.ps
Details File 1 
'adshow1.dat
Details File 2 
adshow1.dat
Details File 1 
adshow2.dat
Details File 2 
'movie32.dll
Details File 2 
'movie64.dll
Details File 23 
about.php
Details md5 1 
f79cc1ab1b4f0d18eba0bd3899edcf44
Details md5 1 
ef118025c43889f0fb9d5c816e815981
Details md5 1 
28ef91c65dc459592d02a198b0a446f0
Details Url 2 
https://technokain.com/ads/adshow1.dat
Details Url 1 
https://technokain.com/ads/adshow2.dat
Details Url 1 
https://www.weeklyexperts.com/wp-content/plugins/revslider/about.php
Details Url 1 
https://www.payngrab.com/wordpress/wp-content/plugins/megamenu/about.php
Details Url 1 
https://www.adhyatmikpunarjagran.org/wp-includes/text/about.php