Analyzing North Korean Malware
Added 2023-05-07 16:37:15 +0000 UTCIn this walkthrough, we will analyze a North Korean malware campaign targeting individuals in South Korea. This coverage was inspired by a blog recently released by Checkpoint Research they outline many of these different lures which then drops the ROKRAT malware which is a signature of North Korean attacks. Some of the different lures used by North Korea look to be political outlines of upcoming plans or changes to important laws. The infection lure that we'll be taking a look at in this video starts with a zip file. We will focus on the techniques used, from the initial ZIP file to the PowerShell stage.
