Retrohunting APT37: North Korean APT used VBA self decode technique to inject RokRat

6 January 2021

This post was authored by Hossein Jazi On December 7 2020 we identified a malicious document uploaded to Virus Total which was purporting to be a meeting request likely used to target the government of South Korea. The meeting date mentioned in the document was 23 Jan 2020, which aligns with the document compilation time of 27 Jan 2020, indicating that this attack took place almost a year ago.

Read full article on Malwarebytes Unpacked

Date:

6 January 2021

Categorie(s):

NEWS

Tag(s):

APT, APT37, IT, North, Offices

Grant Shapps gives update to MPs about cyber-attack on database containing details of armed forces personnel – UK politics live7 May 2024
Investigators finally unmask LockBit kingpin after two-month tease7 May 2024
UK Ministry of Defence System Hacked by Chinese Hackers7 May 2024
Shortcomings of updated US critical infrastructure defense policy evaluated7 May 2024
LockBit ransomware group’s leader unmasked and hit with sanctions; UK house prices inch higher– business live7 May 2024