North Korean APT Kimsuky aka Black Banshee – Active IOCs
Contents
Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs
April 17, 2025GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs
April 18, 2025Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs
April 17, 2025GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs
April 18, 2025Severity
High
Analysis Summary
Kimsuky is a North Korean advanced persistent threat (APT) group, also known as "Black Banshee". The group has been active since at least 2012 and is believed to be state-sponsored. Kimsuky is known for conducting cyber espionage operations and targeting organizations and individuals in various countries, including South Korea, Japan, and the United States. The group has been observed using various techniques to compromise its targets, such as phishing attacks, malware infections, and supply chain attacks. The group's ultimate goals and motivations are not well understood, but they are generally believed to be focused on intelligence gathering and political or economic gain. The tactics, techniques, …
April 17, 2025GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs
April 18, 2025Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs
April 17, 2025GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs
April 18, 2025Severity
High
Analysis Summary
Kimsuky is a North Korean advanced persistent threat (APT) group, also known as "Black Banshee". The group has been active since at least 2012 and is believed to be state-sponsored. Kimsuky is known for conducting cyber espionage operations and targeting organizations and individuals in various countries, including South Korea, Japan, and the United States. The group has been observed using various techniques to compromise its targets, such as phishing attacks, malware infections, and supply chain attacks. The group's ultimate goals and motivations are not well understood, but they are generally believed to be focused on intelligence gathering and political or economic gain. The tactics, techniques, …
IoC
https://www.holosformations.fr/wp-admin/js/widgets/hurryup/?rv=bear&za=battle1
http://103.149.98.247/vs/tt/d.php?newpa=comline&wpn=soofer
103.149.98.247
6013a54ceee15912385ef8c41405a819
6f5259f7087cc501d776f28bede938e6134e4615
42f306b905ece8875bdf16d276b8e4c1f70265918625da475e0f0ff0aa90f31c
20443f517f22b292d63e7e06d9713b771d0902da
3be92f172c64d4c827b524da81038efa2ee5262c
89a725b08ab0e8885fc03b543638be96
7bed4de469d5f23f35f835d6bf1b7678b4ff6ccaefd9604e929abd448d6d43e1
869705fd4dd777d4ab5c662806b42fe43bff6b58e085a64804486326b35fee47
a9b1c04438930c0c7cff3fe8e8520317
http://103.149.98.247/vs/tt/d.php?newpa=comline&wpn=soofer
103.149.98.247
6013a54ceee15912385ef8c41405a819
6f5259f7087cc501d776f28bede938e6134e4615
42f306b905ece8875bdf16d276b8e4c1f70265918625da475e0f0ff0aa90f31c
20443f517f22b292d63e7e06d9713b771d0902da
3be92f172c64d4c827b524da81038efa2ee5262c
89a725b08ab0e8885fc03b543638be96
7bed4de469d5f23f35f835d6bf1b7678b4ff6ccaefd9604e929abd448d6d43e1
869705fd4dd777d4ab5c662806b42fe43bff6b58e085a64804486326b35fee47
a9b1c04438930c0c7cff3fe8e8520317