The North Korea-aligned threat actor Andariel leveraged a previously undocumented malware called EarlyRat in an attack exploiting the Log4j Log4Shell vulnerability last year.
Kaspersky continues to track the use of this malware by other adversaries.
The latest report details how EarlyRat is propagated by means of phishing emails containing decoy Microsoft Word documents.
Despite being an APT group, Lazarus still performs typical cyber crime tasks such as deploying ransomware and addressing ransomware.
Moreover, the group uses a wide variety of custom tools to develop new malware.
The chapter concludes with a discussion on how effective early rat is in infecting machines through remote-controlled malware downloads from a command-and-control server.
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply