APT37 aka ScarCruft or RedEyes – Active IOCs
Contents
Bitter APT – Active IOCs
November 1, 2024North Korean APT Kimsuky aka Black Banshee – Active IOCs
November 1, 2024Bitter APT – Active IOCs
November 1, 2024North Korean APT Kimsuky aka Black Banshee – Active IOCs
November 1, 2024Severity
High
Analysis Summary
APT37, also known as ScarCruft or Red Eyes, is a state-sponsored cyber espionage group originating from North Korea. The group has been active since at least 2012 and primarily targets victims in South Korea. However, it has also conducted operations against entities in other countries, including Japan, Vietnam, Russia, Nepal, China, India, Romania, Kuwait, and various parts of the Middle East.
APT37 has been linked to several campaigns between 2016 and 2018, including Operation Daybreak, Operation Erebus, Golden Time, Evil New Year, North Korean Human Rights, and Evil New Year 2018. These campaigns involve a range of tactics and techniques aimed at intelligence gathering, data exfiltration, and disruption. One of the tools that APT37 has been …
November 1, 2024North Korean APT Kimsuky aka Black Banshee – Active IOCs
November 1, 2024Bitter APT – Active IOCs
November 1, 2024North Korean APT Kimsuky aka Black Banshee – Active IOCs
November 1, 2024Severity
High
Analysis Summary
APT37, also known as ScarCruft or Red Eyes, is a state-sponsored cyber espionage group originating from North Korea. The group has been active since at least 2012 and primarily targets victims in South Korea. However, it has also conducted operations against entities in other countries, including Japan, Vietnam, Russia, Nepal, China, India, Romania, Kuwait, and various parts of the Middle East.
APT37 has been linked to several campaigns between 2016 and 2018, including Operation Daybreak, Operation Erebus, Golden Time, Evil New Year, North Korean Human Rights, and Evil New Year 2018. These campaigns involve a range of tactics and techniques aimed at intelligence gathering, data exfiltration, and disruption. One of the tools that APT37 has been …
IoC
20e4c50dd521b8561510e15f99c677409b17f69cc3825d9f76326c665c672fb4
625c361380bf472c16edec72f5c3a87e9f5be5864d5995bed47997f9d0341180
707e8cb56f32209ca837f2853801256cd3490ed2cc4b3428dc5e4238848f226d
f3c087a0be0687afd78829cab2d3bc2b
e9528f09f1e58ffc308893087f4a8b77aa1d544d
c045b9da0456430268861da18735f7e8ebb2d1df771ca803a2535bdc8f7a6e89
89c0d2cc1e71b17449eec454161d60da
e917166ed0096688994709acb94233ba3f3be39b
72b6f743a93275adaa50968394543890d07021be
144928fc87e1d50f5ed162bb1651ab24
3323777ca4ac2dc2c39f5c55c0c54e3c
b319317c7028d7bbb2f1d289945e4c21b4e34d2b
625c361380bf472c16edec72f5c3a87e9f5be5864d5995bed47997f9d0341180
707e8cb56f32209ca837f2853801256cd3490ed2cc4b3428dc5e4238848f226d
f3c087a0be0687afd78829cab2d3bc2b
e9528f09f1e58ffc308893087f4a8b77aa1d544d
c045b9da0456430268861da18735f7e8ebb2d1df771ca803a2535bdc8f7a6e89
89c0d2cc1e71b17449eec454161d60da
e917166ed0096688994709acb94233ba3f3be39b
72b6f743a93275adaa50968394543890d07021be
144928fc87e1d50f5ed162bb1651ab24
3323777ca4ac2dc2c39f5c55c0c54e3c
b319317c7028d7bbb2f1d289945e4c21b4e34d2b