Tag: lnk files

Attack reports, vulnerabilities, indicators and intrusion sets linked to lnk files.

Attack reports (29)

• New backdoor targeting Ukrainian entities with possible links to Laundry Bear · Published 17/03/2026 11:01 · Modified 17/03/2026 11:17
• Malware MoonPeak Executed via LNK Files · Published 26/01/2026 14:28 · Modified 26/01/2026 18:03
• Operation FrostBeacon: Multi-Cluster Cobalt Strike Campaign Targets Russia · Published 08/12/2025 17:25 · Modified 21/12/2025 18:43
• The 'Bear' attacks: what we learned about the phishing campaign targeting Russian … · Published 26/11/2025 09:39 · Modified 21/12/2025 18:02
• Confucius Espionage: From Stealer to Backdoor · Published 03/10/2025 03:23 · Modified 03/10/2025 08:56
• Going Underground: China-aligned TA415 Conducts U.S.-China Economic Relations Targeting Using VS Code … · Published 17/09/2025 06:09 · Modified 17/09/2025 11:50
• August 2025 APT Attack Trends Report · Published 16/09/2025 13:40 · Modified 16/09/2025 14:40
• Operation HanKook Phantom: Spear-Phishing Campaign · Published 29/08/2025 13:41 · Modified 29/08/2025 15:49
• July 2025 APT Attack Trends Report (South Korea) · Published 19/08/2025 16:07 · Modified 19/08/2025 21:21
• June 2025 APT Attack Trends Report (South Korea) · Published 16/07/2025 16:10 · Modified 16/07/2025 20:15
• Rainbow Hyena strikes again: new backdoor and shift in tactics · Published 15/07/2025 20:39 · Modified 16/07/2025 08:15
• Windows Shortcut (LNK) Malware Strategies · Published 02/07/2025 12:28 · Modified 02/07/2025 13:06
• May 2025 APT Group Trends (South Korea) · Published 18/06/2025 17:46 · Modified 23/06/2025 19:59
• Analysis of APT37 Attack Case Disguised as a Think Tank for National … · Published 06/06/2025 11:02 · Modified 08/06/2025 16:56
• April 2025 Threat Trend Report on APT Attacks (South Korea) · Published 14/05/2025 18:57 · Modified 21/05/2025 20:24
• Venom Spider Uses Server-Side Polymorphism to Weave a Web Around Victims · Published 03/05/2025 03:04 · Modified 05/05/2025 18:09
• March 2025 APT Group Trends (South Korea) · Published 10/04/2025 18:50 · Modified 10/04/2025 20:13
• Gamaredon campaign abuses LNK files to distribute Remcos backdoor · Published 28/03/2025 15:56 · Modified 31/03/2025 11:26
• APT37 - RokRat · Published 12/03/2025 11:56 · Modified 12/03/2025 12:25
• Lumma Stealer Chronicles: PDF-themed Campaign Using Compromised Educational Institutions' Infrastructure · Published 17/02/2025 11:06 · Modified 17/02/2025 11:23
• Coyote Banking Trojan: A Stealthy Attack via LNK Files · Published 31/01/2025 09:53 · Modified 31/01/2025 11:06
• December 2024 Threat Trend Report on APT Attacks (South Korea) · Published 09/01/2025 08:57 · Modified 09/01/2025 09:39
• Stealthy Cyber Attacks: LNK Files & SSH Commands Playbook · Published 19/12/2024 12:56 · Modified 19/12/2024 13:38
• "Breach Report" from UAC-0099 (CERT-UA#12463) · Published 18/12/2024 19:48 · Modified 18/12/2024 20:08
• Analyzing FLUX#CONSOLE: Using Tax-Themed Lures, Threat Actors Exploit Windows Management Console to … · Published 18/12/2024 17:16 · Modified 18/12/2024 17:37