Threat Assessment: North Korean Threat Groups
Essential information
- Published
- 10/09/2024 08:23
- Modified
- 10/09/2024 08:56
- Tags
- 2024-09-10 collectionrat comebacker cybercrime espionage fullhouse kandykorn malware northkorea objcshellz odicloader pondrat poolrat rats rustbucket smoothoperator
- Related entities
- 58 observables, 1 intrusion sets (apt), 20 techniques (mitre), 10 malware
Description
This assessment evaluates several North Korean threat groups operating under the Reconnaissance General Bureau. It describes their organizational structure, objectives, and the diverse malware families employed in their recent campaigns targeting various industries worldwide. The analysis covers 10 malware samples across Windows, macOS, and Linux systems, providing technical insights into their functionality and Palo Alto Networks Cortex XDR's capability to detect and mitigate these threats.