APT_REPORT/lazarus at 42939381369d78274ddbcf46b8cb7e13becd2530 - APT_REPORT - 临风笛

admin/APT_REPORT

mirror of https://github.com/blackorbird/APT_REPORT.git synced 2025-05-05 18:33:13 +00:00

History

blackorbird 4293938136

Rename Lazarus/README.MD to lazarus/README.MD

2023-02-06 15:28:50 +08:00

..

Add files via upload

2021-11-11 10:27:52 +08:00

C2_Communication_of_ThreatNeedle.pdf

Add files via upload

2021-01-28 16:53:18 +08:00

CryptoCore-Lazarus-Clearsky.pdf

Add files via upload

2021-05-25 15:46:16 +08:00

Dream-Job-Campaign.pdf

Add files via upload

2020-08-13 15:13:54 +08:00

Dtrack RAT.zip

Add files via upload

2019-09-24 10:00:49 +08:00

kaspersky-ics-cert-lazarus-targets-defense-industry-with-threatneedle-en-20210225.pdf

Add files via upload

2021-02-25 19:01:23 +08:00

Lazarus Group Recruitment_ Threat Hunters vs Head Hunters.pdf

Add files via upload

2021-04-28 10:45:04 +08:00

lazarus-powershell.zip

Add files via upload

2019-09-23 10:11:04 +08:00

lazarus-threat-intel-report2.pdf

Add files via upload

2020-08-25 18:41:54 +08:00

multiple campaigns of the Lazarus group and their connections.pdf

Add files via upload

2021-10-09 11:12:00 +08:00

Operation-Blockbuster-Report.pdf

Add files via upload

2021-05-08 18:11:30 +08:00

README.MD

Rename Lazarus/README.MD to lazarus/README.MD

2023-02-06 15:28:50 +08:00

The Nightmare of Global Cryptocurrency Companies DangerousPassword of the APT Organization.pdf

Add files via upload

2020-08-26 16:47:48 +08:00

The_Lazarus_Constellation.pdf

Add files via upload

2021-05-27 15:52:33 +08:00

uscert.txt

Create uscert.txt

2020-02-17 16:16:45 +08:00

README.MD

Summary Report

2022.12

BlueNoroff introduces new methods bypassing MoTW

https://securelist.com/bluenoroff-methods-bypass-motw/108383/

2021.11

https://twitter.com/ESETresearch/status/1458438155149922312

A8EF73CC67C794D5AA860538D66898868EE0BEC0

DE0E23DB04A7A780A640C656293336F80040F387

2021.4

https://www.ptsecurity.com/ww-en/analytics/pt-esc-threat-intelligence/lazarus-recruitment/

2021.Security Researcher

https://blog.google/threat-analysis-group/update-campaign-targeting-security-researchers/

https://enki.co.kr/blog/2021/02/04/ie_0day.html

https://www.microsoft.com/security/blog/2021/01/28/zinc-attacks-against-security-researchers/

https://medium.com/s2wlab/analysis-of-threatneedle-c-c-communication-feat-google-tag-warning-to-researchers-782aa51cf74

https://blog.google/threat-analysis-group/new-campaign-targeting-security-researchers/

https://mp.weixin.qq.com/s/W-C_tKVnXco8C3ctgAjoNQ

https://mp.weixin.qq.com/s/UBD0hyXUooYuDrpsz8-MtQ

2019.09.24

Dtrack RAT

sample password：infected

https://securelist.com/my-name-is-dtrack/93338/

8f360227e7ee415ff509c2e443370e56

3a3bad366916aa3198fd1f76f3c29f24

F84de0a584ae7e02fb0ffe679f96db8d

2019.09.23

related

https://twitter.com/cyberwar_15/status/1175940165425958912

sample password：infected

#Lazarus #Powershell

92.222.106[.]229

158.69.57[.]135

79d09d46fd66085587afca579557bc89

50ca734bfba54ed33af469537b5e22c1

17f0f148f53968effcb42230518aeb67

8b51170fc6ecbea6b8496c8a8a8e4f1a