| SYMBOL | COMMON_NAME | aka. SYNONYMS |
| 2023-02-15 ⋅ AhnLab ⋅ Distributed Malware Exploiting Vulnerable Innorix: Andariel Andardoor |
| 2023-02-09 ⋅ #StopRansomware: Ransomware Attacks on Critical Infrastructure Fund DPRK Malicious Cyber Activities Maui Ransomware SiennaBlue SiennaPurple |
| 2023-02-02 ⋅ WithSecure ⋅ No Pineapple! –DPRK Targeting of Medical Research and Technology Sector Dtrack GREASE |
| 2023-01-05 ⋅ AttackIQ ⋅ Emulating the Highly Sophisticated North Korean Adversary Lazarus Group MagicRAT Tiger RAT |
| 2022-11-15 ⋅ Kaspersky Labs ⋅ DTrack activity targeting Europe and Latin America Dtrack |
| 2022-09-07 ⋅ Cisco Talos ⋅ MagicRAT: Lazarus’ latest gateway into victim networks MagicRAT Tiger RAT |
| 2022-08-09 ⋅ Kaspersky ⋅ Andariel deploys DTrack and Maui ransomware Dtrack Maui Ransomware |
| 2022-07-06 ⋅ CISA ⋅ CSA AA22-187A: North Korean State-Sponsored Cyber Actors Use Maui Ransomware to Target the Healthcare and Public Health Sector (PDF) Maui Ransomware |
| 2022-07-06 ⋅ Stairwell ⋅ Maui Ransomware Maui Ransomware |
| 2022-07-06 ⋅ CISA ⋅ Alert (AA22-187A): North Korean State-Sponsored Cyber Actors Use Maui Ransomware to Target the Healthcare and Public Health Sector Maui Ransomware |
| 2021-12-22 ⋅ Threatray ⋅ Establishing the TigerRAT and TigerDownloader Malware Families Tiger RAT |
| 2021-12-03 ⋅ vmware ⋅ TigerRAT – Advanced Adversaries on the Prowl Tiger RAT |
| 2021-09-02 ⋅ KrCert ⋅ TTPs#6 Targeted Watering Hole Attack Strategy Analysis (SILENT CHOLLIMA) Tiger RAT |
| 2021-07-15 ⋅ BrightTALK ⋅ Visual investigations - Speed up your IR, Forensic Analysis and Hunting Tiger RAT |
| 2021-06-15 ⋅ Kaspersky ⋅ Andariel evolves to target South Korea with ransomware BISTROMATH PEBBLEDASH Tiger RAT Unidentified 081 (Andariel Ransomware) |
| 2020-11-27 ⋅ Macnica ⋅ Analyzing Organizational Invasion Ransom Incidents Using Dtrack Cobalt Strike Dtrack |
| 2020-11-03 ⋅ Kaspersky Labs ⋅ APT trends report Q3 2020 WellMail EVILNUM Janicab Poet RAT AsyncRAT Ave Maria Cobalt Strike Crimson RAT CROSSWALK Dtrack LODEINFO MoriAgent Okrum PlugX poisonplug Rover ShadowPad SoreFang Winnti |
| 2020-05-31 ⋅ Twitter (ShadowChasing1) ⋅ Tweet on DTRACK malware Dtrack |
| 2020-03-03 ⋅ PWC UK ⋅ Cyber Threats 2019:A Year in Retrospect KevDroid MESSAGETAP magecart AndroMut Cobalt Strike CobInt Crimson RAT DNSpionage Dridex Dtrack Emotet FlawedAmmyy FlawedGrace FriedEx Gandcrab Get2 GlobeImposter Grateful POS ISFB Kazuar LockerGoga Nokki QakBot Ramnit REvil Rifdoor RokRAT Ryuk shadowhammer ShadowPad Shifu Skipper StoneDrill Stuxnet TrickBot Winnti ZeroCleare APT41 MUSTANG PANDA |
| 2020-02-19 ⋅ Lexfo ⋅ The Lazarus Constellation A study on North Korean malware FastCash AppleJeus BADCALL Bankshot Brambul Dtrack Duuzer DYEPACK ELECTRICFISH HARDRAIN Hermes HOPLIGHT Joanap KEYMARBLE Kimsuky MimiKatz MyDoom NACHOCHEESE NavRAT PowerRatankba RokRAT Sierra(Alfa,Bravo, ...) Volgmer WannaCryptor |
| 2020-02-13 ⋅ Qianxin ⋅ APT Report 2019 Chrysaor Exodus Dacls VPNFilter DNSRat Griffon KopiLuwak More_eggs SQLRat AppleJeus BONDUPDATER Agent.BTZ Anchor AndroMut AppleJeus BOOSTWRITE Brambul Carbanak Cobalt Strike Dacls DistTrack DNSpionage Dtrack ELECTRICFISH FlawedAmmyy FlawedGrace Get2 Grateful POS HOPLIGHT Imminent Monitor RAT jason Joanap KerrDown KEYMARBLE Lambert LightNeuron LoJax MiniDuke PolyglotDuke PowerRatankba Rising Sun SDBbot ServHelper Snatch Stuxnet TinyMet tRat TrickBot Volgmer X-Agent Zebrocy |
| 2019-12-12 ⋅ FireEye ⋅ Cyber Threat Landscape in Japan – Revealing Threat in the Shadow Cerberus TSCookie Cobalt Strike Dtrack Emotet Formbook IcedID Icefog IRONHALO Loki Password Stealer (PWS) PandaBanker PLEAD poisonplug TrickBot BlackTech |
| 2019-11-21 ⋅ Cyberbit ⋅ Dtrack: In-depth analysis of APT on a nuclear power plant Dtrack |
| 2019-11-04 ⋅ Marco Ramilli's Blog ⋅ Is Lazarus/APT38 Targeting Critical Infrastructures? Dtrack |
| 2019-11-03 ⋅ Github (jeFF0Falltrades) ⋅ DTrack Dtrack |
| 2019-09-23 ⋅ Kaspersky Labs ⋅ Hello! My name is Dtrack Dtrack |
| 2018-03-09 ⋅ NCCIC ⋅ Malware Analysis Report Sharpknot SHARPKNOT |
| 2014-02-24 ⋅ RSA Conference ⋅ The Art of Attribution Identifying and Pursuing your Cyber Adversaries ANDROMEDA SPIDER APT19 DEXTOROUS SPIDER Silent Chollima SINGING SPIDER Tonto Team TOXIC PANDA UNION SPIDER |
| 2013-04-02 ⋅ Dark South Korea Total War Review SHARPKNOT |