216.73.217.50

Threat Assessment: North Korean Threat Groups

· Published 10/09/2024 08:23 · Modified 10/09/2024 08:56

Export JSON

Essential information

Published
10/09/2024 08:23
Modified
10/09/2024 08:56
Tags
2024-09-10 collectionrat comebacker cybercrime espionage fullhouse kandykorn malware northkorea objcshellz odicloader pondrat poolrat rats rustbucket smoothoperator
Related entities
58 observables, 1 intrusion sets (apt), 20 techniques (mitre), 10 malware

Description

This assessment evaluates several North Korean threat groups operating under the Reconnaissance General Bureau. It describes their organizational structure, objectives, and the diverse families employed in their recent campaigns targeting various industries worldwide. The analysis covers 10 samples across Windows, macOS, and Linux systems, providing technical insights into their functionality and Palo Alto Networks Cortex XDR's capability to detect and mitigate these threats.

External references