216.73.216.6

Indicator (IOC)

stix AlienVault · Published 14/05/2026 10:39 · Modified 04/06/2026 09:14

Essential information

Value / Name
ableinfo.co.kr
Confidence
100/100
Revoked
No
Valid from
13/05/2026 18:41
Valid until
08/10/2026 18:36
Pattern type
stix
Published
14/05/2026 10:39
Modified
04/06/2026 09:14
Author / Source
AlienVault

Description

No description.

Pattern

[domain-name:value = 'ableinfo.co.kr']

Labels / Tags

Labels: apt37 chinotto compiled python bytecode deepfake impersonation environment variable obfuscation lnk file python backdoor scheduled tasks persistence spear-phishing

Marking (TLP)

TLP:CLEAR

Related entities

Reports and intrusion sets linked to this IOC.

Intrusion sets (1)

  • APT37 InkySquidGroup123
    The MITRE Corporation Confidence 100

    [APT37](https://attack.mitre.org/groups/G0067) is a North Korean state-sponsored cyber espionage group that has been active since at least 2012. The group has targeted victims primarily in South Korea, but also…

    First seen 01/01/1970 · Last seen 16/11/5138 ·