North Korea
· Published 21/12/2025 07:30 · Modified 21/12/2025 07:30
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 07:30
- Modified
- 21/12/2025 07:30
- Updated at
- 21/12/2025 07:30
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 2 reports, 22 attack patterns (mitre), 7 malware, 2 sectors, 12 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (2)
-
14 MITREs 5 Malwares 4 Observables 1 APT
-
11 MITREs 2 Malwares 12 Observables 1 APT
Attack patterns (MITRE) (22)
-
T1571 usesNon-Standard Port MITRE
-
T1027 usesObfuscated Files or Information MITRE
-
T1219 usesRemote Access Tools MITRE
-
T1056.001 usesKeylogging MITRE
-
T1547 usesBoot or Logon Autostart Execution MITRE
-
T1555 usesCredentials from Password Stores MITRE
-
T1588.002 usesTool MITRE
-
T1078 usesValid Accounts MITRE
-
T1070 usesIndicator Removal MITRE
-
T1105 usesIngress Tool Transfer MITRE
-
T1059.006 usesPython MITRE
-
T1115 usesClipboard Data MITRE
Malware (7)
-
Contagious Interview usesFamily
-
QRLog usesFamily
-
RustDoor usesFamily
-
InvisibleFerret usesFamily
-
Docks usesFamily
-
BeaverTail usesFamily
-
Moonstone Sleet usesFamily
Sectors (2)
-
Finance targets
-
Technology targets
Indicators (12)
-
6a104f07ab6c5711b6bc8bf6ff956ab8cd597a388002a966e980c5ec9678b5b0indicates -
5e5313aaf281c8a8eed29ba2c1aaa5aa65bc174bcd0be466f4533712599db758indicates -
aec21b53ee4ae0b55f5018fc5aaa5a4f095a239a64272ca42047c40ec3c212c0indicates -
ipcheck.cloudindicates -
47830f7007b4317dc8ce1b16f3ae79f9f7e964db456c34e00473fba94bb713ebindicates -
mirotalk.netindicates -
f7c142178605102ee56f7e486ba68b97f3f6b522994b24f4116dbbd2abc28cecindicates -
d4f3113e1e0384bcf37c39678deb196fb5b39f15c4990134b6b8637be74e5a2eindicates -
94da263d603bf735ab85f829b564261e59a1d13915d21babe58e72435bfe32abindicates -
f1f3002dec6e36e692e087626edd9b6b0f95a176c0c204d4703ccb4f425aa317indicates -
0110318f70072171c0edc624c8e8be38892f984b121d6a5a5ced1f6b0b45dbd0indicates -
2a00838ccd08b26c7948d1dd25c33a114dd81c3bcee3de595783e6f396e7f50eindicates