ThreatNeedle - DPRK Threat Intelligence

#ThreatNeedle

Malware

2020-02-05 • Dissecting Lazarus's operation target for cryptocurrency business

ThreatNeedle is a backdoor that has been used by Lazarus Group since at least 2019 to target cryptocurrency, defense, and mobile gaming organizations. It is considered to be an advanced cluster of Lazarus Group's Manuscrypt (a.k.a. NukeSped) malware family. - <https://attack.mitre.org/software/S0665/>

9

Tagged Reports
4

Unique Authors
1,906

Active Days

Tagged Reports

2025-04-24

Kaspersky

Lazarus APT updates its toolset in watering hole attacks

#Innorix #LPEClient #Lazarus #SIGNBT #SyncHole #ThreatNeedle #AGAMEMNON #CrossEX #T1190 #T1027.013 #T1016 #T1570 #T1543.003 #T1583.003 #T1057 #T1082 #T1573.001 #T1218.011 #T1087.001 #T1620 #T1135 #T1049 #T1140 #T1087.002 #T1027.009 #T1608.004 #T1105 #T1071.001 #T1574.001 #T1574.002 #T1547.005 #T1083 #T1583.001 #T1007 #T1564.004 #T1573.002 #T1189 #T1584.001 #T1569.002

2024-05-09

Kaspersky

APT trends report Q1 2024

#Trend #NPM #Andariel #ThreatNeedle #Kimsuky #AppleSeed #Durian

2023-09-21

USHHS

North Korean and Chinese Cyber Crime Threats to the HPH

#APT43 #ThreatNeedle #Slides #MATA

2023-01-05

Attack IQ

Emulating the Highly Sophisticated North Korean Adversary Lazarus Group

#Trend #DreamJob #Inception #MagicRAT #Sharpshooter #ThreatNeedle #T1025 #T1047 #T1012 #T1016 #T1543.003 #T1057 #T1082 #T1552.002 #T1074.001 #T1572 #T1218.011 #T1547.001 #T1049 #T1003.002 #T1053.005 #T1041 #T1048.001 #T1105 #T1071.001 #T1220 #T1046 #T1218.010 #T1055 #T1112 #T1083 #T1007 #T1033 #T1036.005 #T1003

2021-03-09

Kaspersky

Lazarus group's campaigns Target for defense industry

#Defense #ThreatNeedle #Slides #Lazarus

2021-02-25

Kaspersky

Lazarus targets defense industry with ThreatNeedle

#ThreatNeedle #Defense #Lazarus #T1090.001 #T1016 #T1104 #T1036.003 #T1560.001 #T1543.003 #T1132.002 #T1057 #T1082 #T1059.003 #T1070.002 #T1557.001 #T1572 #T1547.001 #T1135 #T1049 #T1140 #T1036.004 #T1070.004 #T1041 #T1070.003 #T1021.002 #T1204.002 #T1071.001 #T1112 #T1083 #T1007 #T1033 #T1566.002 #T1569.002

2021-02-12

Kaspersky

A deep dive into ThreatNeedle cluster of Lazarus group

#ThreatNeedle #Slides #Lazarus

2021-01-27

S2W

Analysis of THREATNEEDLE C&C Communication (feat. Google TAG Warning to Researchers)

#DreamJob #ThreatNeedle

2020-02-05

Kaspersky

Dissecting Lazarus's operation target for cryptocurrency business

#ThreatNeedle #AppleJeus #Slides #Lazarus

« Back