[LINK] North Korean Trojan

Tom Worthington tom.worthington at tomw.net.au
Sat Jun 16 09:33:42 AEST 2018


Shortly after signing a peace agreement with North Korea, the US 
government issued a warning about North Korea using malware "HIDDEN 
COBRA": https://www.us-cert.gov/hiddencobra

"This malware report contains analysis of 11 malware samples consisting 
of 32-bit and 64-bit Windows executable files and a malicious Microsoft 
Word document that contains Visual Basic for Applications (VBA) macros. 
These files have the capability to download and install malware, install 
proxy and Remote Access Trojans (RATs), connect to command and control 
(C2) servers to receive additional instructions, and modify the victim's 
firewall to allow incoming connections."


-- 
Tom Worthington, MEd FHEA FACS CP http://www.tomw.net.au +61(0)419496150
TomW Communications Pty Ltd. PO Box 13, Belconnen ACT 2617, Australia
Liability limited by a scheme approved under Prof. Standards Legislation

Honorary Senior Lecturer, Computer Science, Australian National 
University https://cecs.anu.edu.au/research/profile/tom-worthington



More information about the Link mailing list