ThreatNeedle-lazarusholic

#ThreatNeedle

Tool/Malware

ThreatNeedle is a backdoor that has been used by Lazarus Group since at least 2019 to target cryptocurrency, defense, and mobile gaming organizations. It is considered to be an advanced cluster of Lazarus Group's Manuscrypt (a.k.a. NukeSped) malware family.

https://attack.mitre.org/software/S0665/

Reports

2024-05-09
Kaspersky
APT trends report Q1 2024
#Trend #NPM #Andariel #ThreatNeedle #Kimsuky #AppleSeed #Durian

2023-09-21
USHHS
North Korean and Chinese Cyber Crime Threats to the HPH
#APT43 #ThreatNeedle #Slides #MATA

2023-01-05
AttackIQ
Emulating the Highly Sophisticated North Korean Adversary Lazarus Group
#Trend #DreamJob #Inception #MagicRAT #Sharpshooter #ThreatNeedle

2021-03-09
Kaspersky
Lazarus group's campaigns Target for defense industry
#Defense #ThreatNeedle #Slides

2021-02-25
Kaspersky
Lazarus targets defense industry with ThreatNeedle
#ThreatNeedle #Defense

2021-02-12
Kaspersky
A deep dive into ThreatNeedle cluster of Lazarus group
#ThreatNeedle #Slides

2021-01-27
S2W
Analysis of THREATNEEDLE C&C Communication (feat. Google TAG Warning to Researchers)
#DreamJob #ThreatNeedle

2020-02-05
Kaspersky
Dissecting Lazarus's operation target for cryptocurrency business
#ThreatNeedle #AppleJeus #Slides