韓獨 합동 사이버 보안 권고문(北 방산분야 해킹)

2024-02-19 KRNCSC Korea-China joint cyber security advisory (North Korean defense industry hacking)

https://www.ncsc.go.kr:4018/main/cop/bbs/selectBoardArticle.do?bbsId=SecurityAdvice_main&nttId=118726&menuNo=020000&subMenuNo=020200&thirdMenuNo=

Attachments

韓獨_합동_사이버보안권고문국문.pdf (1 MB)

South Korea's National Intelligence Service and Germany's Federal Office for the Protection of the Constitution issued a joint advisory on North Korean cyber threats against defense-industry companies and research institutes. The advisory says North Korea uses cyber espionage as a low-cost way to acquire weapons technology for conventional-force modernization, ballistic missiles, reconnaissance satellites, submarines, and other strategic weapons. It attributes two representative defense-sector intrusion cases to Lazarus and other North Korean hacking organizations, and includes TTPs and indicators to help prevent similar compromises.

Indicators of Compromise

Type Value First Seen Last Seen
YARA operation_DREAMJOB_AMAZON_VNC 2024-02-19 2024-02-19
HASH 47999fa014b6cc5a2a71be590c938303 2024-02-19 2024-02-19
HASH 71e259242dfdba7ffa2698f1900919ec 2024-02-19 2024-02-19
HASH 4631ef8db9c36b0f2534ac7193f2587e 2024-02-19 2024-02-19
HASH ac9021eb798de8323702a5aeb7c590f… 2024-02-19 2024-02-19
HASH f3482a38befdcd7d0b87d86f24cdb209 2024-02-19 2024-02-19
HASH 028bd8471baa6610548fb721086f5b85 2024-02-19 2024-02-19
HASH 7da62cdb447a7ae3ae7b5f67a511e7c… 2024-02-19 2024-02-19
HASH 2e0d374f1e706ae1fa24558b54c5a16… 2024-02-19 2024-02-19
HASH 7906270679014234b70aa63dd89e828… 2024-02-19 2024-02-19
HASH 607a2a8d2863c3144b8e901a16a76c33 2024-02-19 2024-02-19
HASH 7b4d0d8e3bfcd634bc7d7a17fb546b7… 2024-02-19 2024-02-19
HASH 3c2aa3687ac9f466ce909e2cb12b07a5 2024-02-19 2024-02-19
HASH d5c8edb84e4ff33aea8865676ffe801… 2024-02-19 2024-02-19
HASH 3bc8acdd07c6d91652101d9c8b3326b… 2024-02-19 2024-02-19
HASH 294706ae0585abaf4e6c5e66a7f5141… 2024-02-19 2024-02-19
HASH 127ced578e041f53b5988a7fefaa6e0… 2024-02-19 2024-02-19
URL https://sifucanva.com/wp- 2024-02-19 2024-02-19
DOMAIN chrysalisc.com 2024-02-19 2024-02-19
DOMAIN sifucanva.com 2024-02-19 2024-02-19
DOMAIN connection.lockscreen.kro.kr 2024-02-19 2024-02-19
DOMAIN updating.dothome.co.kr 2024-02-19 2024-02-19
DOMAIN job4writers.com 2024-02-19 2024-02-19
DOMAIN rginfotechnology.com 2024-02-19 2024-02-19
DOMAIN thefrostery.co.uk 2022-05-05 2024-02-19

Related Reports

2024-07-19 • 22% Match
#Trend #Andariel #Kimsuky #MoonstoneSleet #Lazarus #T1082 #T1059.003 #T1090 #T1140 #T1005 #T1070.004 #T1041 #T1113 #T1555 #T1560 #T1071.001 #T1046 #T1112 #T1115 #T1083 #T1497 #T1056.001 #T1036 #T1027 #T1204.002 #T1566.002 #T1555.003 #T1071 #T1124 #T1222 #T1552 #T1057 #T1583.003 #T1518.001 #T1547.001 #T1053.005 #T1539 #T1608.005 #T1583.001 #T1059.001 #T1053 #T1552.001 #T1566 #T1059 #T1003 #T1497.001 #T1102.001 #T1574.002 #T1562.001 #T1490 #T1486 #T1129 #T1133 #T1571 #T1548 #T1190 #T1203 #T1564.001 #T1087 #T1562.004 #T1218.011 #T1070.006 #T1547 #T1068 #T1614 #T1573 #T1095 #T1562 #T1070 #T1047 #T1056 #T1176 #T1010 #T1033 #T1569.002 #T1543.003 #T1485 #T1012 #T1202 #T1087.002 #T1021.004 #T1222.001 #T1518 #T1564.003 #T1505.003 #T1069.002 #T1564 #T1595.002 #T1027.005 #T1070.001 #T1056.004 #T1584
Shares tags: T1140, T1041, T1046
« Back