SYMBOLCOMMON_NAMEaka. SYNONYMS
win.unidentified_101 (Back to overview)

Unidentified 101 (Lazarus?)

Actor(s): Lazarus Group

Potential Lazarus sample.

References
2022-12-27KasperskySeongsu Park
@online{park:20221227:bluenoroff:383c86f, author = {Seongsu Park}, title = {{BlueNoroff introduces new methods bypassing MoTW}}, date = {2022-12-27}, organization = {Kaspersky}, url = {https://securelist.com/bluenoroff-methods-bypass-motw/108383/}, language = {English}, urldate = {2023-06-29} } BlueNoroff introduces new methods bypassing MoTW
LazarLoader Unidentified 101 (Lazarus?)
2022-11-23Twitter (@RedDrip7)RedDrip Team
@online{team:20221123:tweets:726f590, author = {RedDrip Team}, title = {{Tweets about potential Lazarus sample}}, date = {2022-11-23}, organization = {Twitter (@RedDrip7)}, url = {https://twitter.com/RedDrip7/status/1595365451495706624}, language = {English}, urldate = {2022-12-20} } Tweets about potential Lazarus sample
Unidentified 101 (Lazarus?)

There is no Yara-Signature yet.