BREAKING: North Korean Hacker Groups Kimsuky and Lazarus Unveil Advanced Backdoor Tools

2025. 11. 02.
OSINT 협회
OSINT 정보
BREAKING: North Korean Hacker Groups Kimsuky and Lazarus Unveil Advanced Backdoor Tools Kimsuky uses ZIP lures and a Go dropper (XOR decryption) with MemLoad persistence via scheduled task to deliver HttpTroy, which loads in memory and uses HTTP POST obfuscated with XOR+Base64.
BREAKING: North Korean Hacker Groups Kimsuky and Lazarus Unveil Advanced Backdoor Tools Kimsuky uses ZIP lures and a Go dropper (XOR decryption) with MemLoad persistence via scheduled task to deliver HttpTroy, which loads in memory and uses HTTP POST obfuscated with XOR+Base64.
게시일: 2025. 11. 02.
출처: OSINT 협회 Facebook
원본 Facebook 게시물 보기 →
이전

CVE-2025-40778 : BIND 9 Cache Poisoning via Unsolicited Answer Records

다음

DPRK #Kimsuky IOC