« Reports in 2026

416 reports

2026-06-29 • Synaptic Security

Kimsuky used a Korean-language CHM lure about North Korean food-crisis and right-to-food material to launch hidden PowerShell, decode a VBScript bootstrap, and retrieve staged payloads from DynV6-hosted infrastructure. The retrieved VBScript profiled the …

#CHM #Kimsuky #T1082 #T1140 #T1041 #T1071.001 #T1112 #T1083 #T1057 #T1059.005 #T1053.005 #T1059.001 #T1105 #T1218.001 #MB-0010