lazarusholic

2023-07-27, Ahnlab
https://asec.ahnlab.com/en/55585/
#CHM

AhnLab Security Emergency response Center (ASEC) previously covered CHM-type malware strains impersonating security companies and financial institutes. This post will cover recently identified CHM strains impersonating Korean financial institutes and insurance companies as they were found being distributed to steal information. The distribution occurred on the 17th (Monday), when statements are regularly sent to users whose payment schedule to financial institutes falls on the 25th of each month. It is certainly possible for those who have the same schedule to make a misjudgment and execute the file. AhnLab’s EDR products record in detail the histories of the new malware strains being run due to users’ misconceptions. The damage details and exfiltrated files can also be identified.
https://asec.ahnlab.com/en/?p=55569&preview=true
This post will provide information on the distribution method and details of the CHM malware. It explains how AhnLab’s EDR product records the process from the malware strain being executed from CHM files to the …

0f27c6e760c2a530ee59d955c566f6da
150e53a8c852ac5f23f47aceef452542
59a924bb5cb286420edebf8d30ee424b
aaeb059d62c448cbea4cf96f1bbf9efa
bfe2a0504f7fb1326128763644c88d37
https://akriqa.xyz/qcknq
https://atusay.lat/kxydo
https://crilts.cfd/cdeeb
https://drilts.sbs/zcwq
https://frotsy.lol/cvxxv
https://labimy.ink/rskme
https://ppangz.mom/mjifi
https://sklims.lat/sbjcw
https://skrids.cfd/elzal
https://snexby.sbs/svbgt
https://snivox.lat/craig
https://sutezy.mom/nmjnq
https://tosals.ink/kxydo
https://tosals.ink/uEH5J.html