← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Warning on KIMSUKY1 Cyber Actor's Recent Cyber Campaigns against Google's Browser and App Store Services
The German Bundesamt für Verfassungsschutz (BfV) and the National
Intelligence Service of the Republic of Korea (NIS) issue the following Joint
Cyber Security Advisory to raise awareness of KIMSUKY’s (a.k.a. Thallium,
Velvet Chollima, etc.) cyber campaigns against Google's browser and app
store services targeting experts on the Korean Peninsula and North Korea
issues.
Indicators of Compromise (16)
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| FileHash-MD5 | 012d5ffe697e33d81b9e7447f4aa338b | — | 2023-03-24 | |
| FileHash-MD5 | 04bb7e1a0b4f830ed7d1377a394bc717 | — | 2023-03-24 | |
| FileHash-MD5 | 3458daa0dffdc3fbb5c931f25d7a1ec0 | — | 2023-03-24 | |
| FileHash-MD5 | 51527624e7921a8157f820eb0ca78e29 | — | 2023-03-24 | |
| FileHash-MD5 | 582a033da897c967faade386ac30f604 | — | 2023-03-24 | |
| FileHash-MD5 | 89f97e1d68e274b03bc40f6e06e2ba9a | — | 2023-03-24 | |
| FileHash-SHA1 | 502930a3699ab8f638503fac656c1e180938ed3a | SHA1 of 89f97e1d68e274b03bc40f6e06e2ba9a | 2023-03-24 | |
| FileHash-SHA1 | 750cd6daa87fd87b5c5b60ae1054719248274a9e | SHA1 of 3458daa0dffdc3fbb5c931f25d7a1ec0 | 2023-03-24 | |
| FileHash-SHA1 | c3e97c29a2c64e823c447ac3a88219af70026576 | SHA1 of 04bb7e1a0b4f830ed7d1377a394bc717 | 2023-03-24 | |
| FileHash-SHA256 | 031bde16d3b75083b0adda754aa982d4f6bd91e6b9d0531d5486dc139a90ce5a | SHA256 of 3458daa0dffdc3fbb5c931f25d7a1ec0 | 2023-03-24 | |
| FileHash-SHA256 | 539231dea156e29bd6f7ed8430bd08a4e07ba330a9fad799fea45d9e9eed070c | SHA256 of 89f97e1d68e274b03bc40f6e06e2ba9a | 2023-03-24 | |
| FileHash-SHA256 | fdd0e18e841d3ec4e501dd8bf0da68201779fd90237c1c67078d1d915cd13045 | SHA256 of 04bb7e1a0b4f830ed7d1377a394bc717 | 2023-03-24 | |
| hostname | mc.pzs.kr | — | 2023-03-24 | |
| domain | gonamod.com | — | 2023-03-24 | |
| domain | navernnail.com | — | 2023-03-24 | |
| domain | siekis.com | — | 2023-03-24 |