Twitter
Twitter
Facebook
Kaspersky Partner
Twitter
Facebook
Kaspersky Partner

Virus | malwares | cyberintrusion

Hidden Cobra – Lazarus / BlueNoroff


mercredi 30 mai 2018

Hidden Cobra est détecté par KL (Kaspersky Lab) :

  • Worm.Win32.Agent.age depuis le 23.09.2011
  • Worm.Win32.Agent.pve depuis le 08.06.2013
  • Worm.Win32.Agent.agq depuis le 19.10.2011

Hidden Cobra est aussi connu sous le nom Lazarus / BlueNoroff :


US-CERT > Alert (TA18-149A)

  • HIDDEN COBRA – Joanap Backdoor Trojan and Brambul Server Message Block Worm
  • This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). Working with U.S. government partners, DHS and FBI identified Internet Protocol (IP) addresses and other indicators of compromise (IOCs) associated with two families of malware used by the North Korean government:
    • a remote access tool (RAT), commonly known as Joanap; and
    • a Server Message Block (SMB) worm, commonly known as Brambul.
    • …/…
  • https://www.us-cert.gov/ncas/alerts/TA18-149A

 

Hidden Cobra – Lazarus / BlueNoroff

Hidden Cobra est détecté par KL (Kaspersky Lab) :

  • Worm.Win32.Agent.age depuis le 23.09.2011
  • Worm.Win32.Agent.pve depuis le 08.06.2013
  • Worm.Win32.Agent.agq depuis le 19.10.2011

Hidden Cobra est aussi connu sous le nom Lazarus / BlueNoroff :


US-CERT > Alert (TA18-149A)

  • HIDDEN COBRA – Joanap Backdoor Trojan and Brambul Server Message Block Worm
  • This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). Working with U.S. government partners, DHS and FBI identified Internet Protocol (IP) addresses and other indicators of compromise (IOCs) associated with two families of malware used by the North Korean government:
    • a remote access tool (RAT), commonly known as Joanap; and
    • a Server Message Block (SMB) worm, commonly known as Brambul.
    • …/…
  • https://www.us-cert.gov/ncas/alerts/TA18-149A

 

Hidden Cobra – Lazarus / BlueNoroff

Hidden Cobra est détecté par KL (Kaspersky Lab) :

  • Worm.Win32.Agent.age depuis le 23.09.2011
  • Worm.Win32.Agent.pve depuis le 08.06.2013
  • Worm.Win32.Agent.agq depuis le 19.10.2011

Hidden Cobra est aussi connu sous le nom Lazarus / BlueNoroff :


US-CERT > Alert (TA18-149A)

  • HIDDEN COBRA – Joanap Backdoor Trojan and Brambul Server Message Block Worm
  • This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). Working with U.S. government partners, DHS and FBI identified Internet Protocol (IP) addresses and other indicators of compromise (IOCs) associated with two families of malware used by the North Korean government:
    • a remote access tool (RAT), commonly known as Joanap; and
    • a Server Message Block (SMB) worm, commonly known as Brambul.
    • …/…
  • https://www.us-cert.gov/ncas/alerts/TA18-149A