IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

Tempted to Classifying APT Actors: Practical Challenges of Attribution in the Case of Lazarus’s Subgroup

DATE : 2025-03-25T16:15:12
SOURCE : or.jp

FILE_HASH_MD5:
7c6a180b36896a351a108d3f7e1e2dde

Domain:
malicious-package.com
nids.mod.go.jp
securelist.com
vblocalhost.com
un.org
ti.qianxin.com
thehackernews.com
welivesecurity.com
security.macnica.co.jp
unit42.paloaltonetworks.jp
ofac.treasury.gov
blog.phylum.io
group.in

Url:
http://malicious-package.com/malware
https://www.nids.mod.go.jp/publication/commentary/pdf/commentary346.pdf
https://securelist.com/lazarus-threatneedle/100803
https://vblocalhost.com/uploads/VB2021-Park.pdf
https://www.un.org/securitycouncil/sanctions/1718/panel_experts/report
https://ti.qianxin.com/blog/articles/Analysis-of-Suspected-Lazarus-APT-Q-1-Attack-Sample-Targeting-npm-Package-Supply-Chain-EN
https://thehackernews.com/2024/05/microsoft-uncovers-moonstone-sleet-new.html
https://blog.google/threat-analysis-group/new-campaign-targeting-security-researcher
https://www.welivesecurity.com/2023/04/20/linux-malware-strengthens-links-lazarus-3cx-supply-chain-attack
https://security.macnica.co.jp/blog/2024/10/-contagious-interview.html
https://jp.security.ntt/tech_blog/en-contagious-interview-ottercookie
https://unit42.paloaltonetworks.jp/two-campaigns-by-north-korea-bad-actors-target-job-hunter
https://ofac.treasury.gov/recent-actions/20220516
https://blog.phylum.io/crypto-themed-npm-packages-found-delivering-stealthy-malware