← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Onyx Sleet uses array of malware to gather intelligence for North Korea | Microsoft Security Blog
WHITE Onyx Sleet CyberHunter_NL 2024-07-29 Modified: 2024-08-28
48
IOCs
MEDIUM VOLUME
Onyx Sleet, Microsoft’s most advanced cyber-espionage tool, is being used to gather intelligence for North Korea, the company has announced. £1.5bn
onyx sleetmicrosoftsmalltigervalidalphacveidlog4jtigerratendpointunitedsouth korearatstdrop2sliverthemidavmprotectdtrackjunevirustotalfebruarydefenderprojecttwitterdorac++durianbeaconlighthandh0lygh0st
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Dora C++ DurianBeacon LightHand ValidAlpha H0lyGh0st Dtrack SmallTiger
Indicators of Compromise (3 / 48 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 CVE URL domain hostname
TYPEINDICATORDESCRIPTIONCREATED
URL http://84.38.134.56/procdump.gif 2024-07-29
URL https://thecyberwire.com/podcasts/microsoft-threat-intelligence 2024-07-29
URL https://www.boho.or.kr/en/bbs/view.do?searchCnd=&bbsId=B0001041&searchWrd=&menuNo=205083&pageIndex=1&categoryCode=&nttId=36276 2024-07-29
References (1)
↗ https://www.microsoft.com/en-us/security/blog/2024/07/25/onyx-sleet-uses-array-of-malware-to-gather-intelligence-for-north-korea/