← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Contagious Interview | North Korean Threat Actors Reveal Plans and Ops by Abusing Cyber Intel Platforms | SentinelOne
WHITE Lazarus Tr1sa111 2025-09-09 Modified: 2025-10-09
49
IOCs
MEDIUM VOLUME
A joint investigation by SentinelLABS, Validin, and other partner organizations has identified North Korean threat actors involved in the Contagious Interview campaign, which exposed the infrastructure of a suspected APT umbrella cluster.
validinmarchsentinellabsvirustotalip addresscontagiousdropclickfixmaltraillazarusvalidin useapriljunedateteamrobinhoodscarcruftcontagious interviewtalentcheck
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
TalentCheck Contagious Interview ClickFix
Indicators of Compromise (3 / 49 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain email hostname
TYPEINDICATORDESCRIPTIONCREATED
FileHash-MD5 b817f6b5f0f1cabe6194bea457bdc372 MD5 of 24042a8eea9b9c20af1f7bae00296b44968a068f 2025-09-09
FileHash-MD5 c676c779990a6265786ca61ce121dbe7 MD5 of 44ddabf5b5d601077936a130a2863a96d2af1c8e 2025-09-09
FileHash-MD5 ec52395aef59706866cf2501908a82cb MD5 of 4a8bfa28d46ae14e45a50e105e2d34f850ffa96c 2025-09-09
References (1)
↗ https://www.sentinelone.com/labs/contagious-interview-threat-actors-scout-cyber-intel-platforms-reveal-plans-and-ops/