Pulse Detail — Threat Intelligence

PULSE NAME

OtterCookie: Analysis of New Lazarus Group Malware

WHITE Lazarus PetrP.73 2025-06-03 Modified: 2025-07-03

IOCs

MEDIUM VOLUME

North Korean state-sponsored cyber-attack group Lazarus is continuing to target professionals in the tech, financial and crypto sectors with a new tool called OtterCookie, an analysis shows, including fake job offers.

MITRE ATT&CK & Malware Families

ATT&CK TECHNIQUES

T1003 T1071 T1082 T1571 T1560 T1095 T1496 T1027 T1106

MALWARE FAMILIES

Lazarus Exodus Wallet Beavertail OtterCookie

Indicators of Compromise (1 / 26 total)

All FileHash-MD5 FileHash-SHA256 URL domain hostname

TYPE	INDICATOR	DESCRIPTION	CREATED
FileHash-MD5	56e15ef3b5e5f169fc063f8d3e88288e	—	2025-06-03

References (1)

↗ https://any.run/cybersecurity-blog/ottercookie-malware-analysis/