North Korean hackers adopt complex methods to hide malware from analysts: Report



News North Korean hackers adopt complex methods to hide malware from analysts: Report Technique to verify victim identities makes it harder for researchers to access payloads and develop countermeasures Ethan Jewell August 25, 2022 SHARE COPY LINK FACEBOOK X LINKEDIN MASTODON North Korean man using a computer, Pyongyang, April 2018 \| Image: NK News A notorious North Korean hacking syndicate has adopted sophisticated techniques to ensure it deploys malware only against intended targets, making it harder for authorities to get their hands on the group’s malware and analyze it, according to security researchers Thursday. Seongsu Park, a malware analyst at cybersecurity firm Kaspersky, relayed the findings in a new report detailing the inner workings of the command and control (C2) servers behind the DPRK-backed Kimsuky’s Gold Dragon malware cluster. According to Park, Kimsuky’s latest innovation is the adoption of “victim verification” techniques in some C2 servers Read More © Korea Risk Group. All rights reserved. No part of this content may be reproduced, distributed, or used for commercial purposes without prior written permission from Korea Risk Group. LATEST ANALYSIS 01How China could benefit from North Korea’s troop deployment to Ukraine 02New North Korean ICBM delivers big political message, and likely bigger payloads 03How North Korea-Russia ties will challenge next US president, no matter who wins 04What to make of the stunning collapse in value of North Korean won 05What to know about Kim Yong Bok, the man leading North Korean troops in Russia 06If Trump: How erratic leader’s reelection could scramble North Korea policy 07North Korea’s admission of drone incursion exposes glaring gaps in air defenses 08The war in Ukraine is transforming how Europe perceives North Korean threats

News

North Korean hackers adopt complex methods to hide malware from analysts: Report

Technique to verify victim identities makes it harder for researchers to access payloads and develop countermeasures

Ethan Jewell August 25, 2022

North Korean hackers adopt complex methods to hide malware from analysts: Report

North Korean man using a computer, Pyongyang, April 2018 | Image: NK News

A notorious North Korean hacking syndicate has adopted sophisticated techniques to ensure it deploys malware only against intended targets, making it harder for authorities to get their hands on the group’s malware and analyze it, according to security researchers Thursday.

Seongsu Park, a malware analyst at cybersecurity firm Kaspersky, relayed the findings in a new report detailing the inner workings of the command and control (C2) servers behind the DPRK-backed Kimsuky’s Gold Dragon malware cluster.

According to Park, Kimsuky’s latest innovation is the adoption of “victim verification” techniques in some C2 servers

01How China could benefit from North Korea’s troop deployment to Ukraine
02New North Korean ICBM delivers big political message, and likely bigger payloads
03How North Korea-Russia ties will challenge next US president, no matter who wins
04What to make of the stunning collapse in value of North Korean won
05What to know about Kim Yong Bok, the man leading North Korean troops in Russia
06If Trump: How erratic leader’s reelection could scramble North Korea policy
07North Korea’s admission of drone incursion exposes glaring gaps in air defenses
08The war in Ukraine is transforming how Europe perceives North Korean threats

North Korean hackers adopt complex methods to hide malware from analysts: Report

LATEST ANALYSIS

Similar Articles

About the Author

Ethan Jewell