Pulse Detail — Threat Intelligence

PULSE NAME

RustDoor and Koi Stealer for macOS Used by North Korea-Linked Threat Actor to Target the Cryptocurrency Sector

WHITE Tr1sa111 2025-02-27 Modified: 2025-03-28

IOCs

MEDIUM VOLUME

MITRE ATT&CK & Malware Families

ATT&CK TECHNIQUES

MALWARE FAMILIES

Koi Stealer

Indicators of Compromise (3 / 25 total)

All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain

TYPE	INDICATOR	DESCRIPTION	CREATED
FileHash-MD5	457b0b1ab814a830ee2f658eb501face	MD5 of 76f96a35b6f638eed779dc127f29a5b537ffc3bb7accc2c9bfab5a2120ea6bc9	2025-02-27
FileHash-MD5	701165265b73f90942b7000ba39cfe5c	MD5 of baa676b671e771bf04b245e648f49516b338e1f49cbd9b4d237cc36d57ab858d	2025-02-27
FileHash-MD5	d2da2dc24f73f66f3fbe62784262378b	MD5 of a900ec81363358ef26bcdf7827f6091af44c3f1001bc8f52b766c9569b56faa5	2025-02-27

References (1)