North Korean Group “KONNI” Targets the Russian Diplomatic Sector with new Versions of Malware Implants

malware + Intelligence Cluster25 todayJanuary 3, 2022

Cluster25 analyzed a recent attack linked to the North Korean APT group “Konni” targeting Russian diplomatic sector using a spear phishing theme for New Year’s Eve festivities as lure.

Once the malicious email attachment is opened and executed, a chain composed by multiple stages is triggered, allowing actor to install an implant belonging to the Konni RAT family as final payload.

Download Cluster25 Report

Written by: Cluster25

Tagged as: , , , .

Previous post

Similar posts

malware Cluster25 / January 3, 2022

North Korean Group “KONNI” Targets the Russian Diplomatic Sector with new Versions of Malware Implants

Cluster25 analyzed a recent attack linked to the North Korean APT group “Konni” targeting Russian diplomatic sector using a spear phishing theme for New Year’s Eve festivities as lure. Once the malicious email attachment is opened and executed, a chain composed by multiple stages is triggered, allowing actor to install an implant belonging to the ...

Read more trending_flat