Threat Assessment: North Korean Threat Groups

SUMMARY :

This assessment evaluates several North Korean threat groups operating under the Reconnaissance General Bureau. It describes their organizational structure, objectives, and the diverse malware families employed in their recent campaigns targeting various industries worldwide. The analysis covers 10 malware samples across Windows, macOS, and Linux systems, providing technical insights into their functionality and Palo Alto Networks Cortex XDR's capability to detect and mitigate these threats.

OPENCTI LABELS :

espionage,malware,cybercrime,comebacker,rats,northkorea,rustbucket,kandykorn,collectionrat,fullhouse,poolrat,odicloader,objcshellz,pondrat,smoothoperator


Open in NetmanageIT OpenCTI Public Instance with below link!


Use public read only username and password on login page.

NOTE : Use Public READ only user credentials on login page banner.


Threat Assessment: North Korean Threat Groups