북한 해킹 단체 김수키(Kimsuky)에서 만든 피싱 안드로이드 악성코드-8.aab(2024.3.22)
2024-06-11 • Sakai • Phishing Android Malware Created by the North Korean Hacking Group Kimsuky - 8.aab (2024.3.22) •
Kimsuky delivered an Android phishing malware package named 8.aab, analyzed with jadx and identified by hashes including SHA-256 3e397e929c92d5f4fd6040cedb2ac6233d37ef29e96085d29dda04acf30b8355. The report documents requested Android permissions and frames the sample as a North Korea-linked mobile phishing tool for collecting victim information.
Indicators of Compromise
| Type | Value | First Seen | Last Seen |
|---|---|---|---|
| HASH | a5d17298ccf0bc07612873819f5bab37 | 2024-06-11 | 2024-06-11 |
| HASH | 55d3990e60be2ec0908ca83b2ae0783… | 2024-06-11 | 2024-06-11 |
| HASH | 3e397e929c92d5f4fd6040cedb2ac62… | 2024-06-11 | 2024-06-11 |
| URL | http://hogmasil.lol/android/ | 2024-06-11 | 2024-06-11 |
| URL | http://hogmasil.lol/android/pat… | 2024-06-11 | 2024-06-11 |
| URL | http://hogmasil.lol/android/fil… | 2024-06-11 | 2024-06-11 |
| URL | http://hogmasil.lol/android/ind… | 2024-06-11 | 2024-06-11 |
| DOMAIN | hogmasil.lol | 2024-06-11 | 2024-06-11 |
Related Actors
Related Reports
Shares tag: Kimsuky • Same author: Sakai • Published within a month
Shares tag: Kimsuky • Same author: Sakai • Published within a month
Shares tag: Kimsuky • Same author: Sakai
Shares tag: Kimsuky • Same author: Sakai
Shares tag: Kimsuky • Same author: Sakai
Shares tag: Kimsuky • Same author: Sakai