← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
IOC - A rigged game: ScarCruft compromises gaming platform in a supply-chain attack
WHITE celestre 2026-05-07 Modified: 2026-05-07
56
IOCs
HIGH VOLUME
ESET researchers uncovered a multiplatform supply-chain attack by North Korea-aligned APT group ScarCruft, targeting the Yanbian region in China – home to ethnic Koreans and a crossing point for North Korean refugees and defectors. In the attack, probably ongoing since late 2024, ScarCruft compromised Windows and Android components of a video game platform dedicated to Yanbian-themed games, trojanizing them with a backdoor.
lg dacomcorporationip managerhostway idcsk broadbandco ltd
Indicators of Compromise (14 / 56 total)
All IPv4 domain hostname FileHash-MD5 FileHash-SHA1 FileHash-SHA256
TYPEINDICATORDESCRIPTIONCREATED
FileHash-MD5 0bd494830049d72f015da64a407e9813 2026-05-07
FileHash-MD5 1f3c8879349d5fcf973abbcee82fd069 MD5 of 2c6cc71b7e7e4b28c2c176b504bc5bdb687c4d41 2026-05-07
FileHash-MD5 23a1eacad84be4f2c5830755b1948582 MD5 of 01a33066fbc6253304c92760916329abd50c3191 2026-05-07
FileHash-MD5 2d397a2ca2d3bfc9c7a509d04376547b MD5 of b06110e0feb7592872e380b7e3b8f77d80dd1108 2026-05-07
FileHash-MD5 3d3d2dc34f01bcf890f185a5421836c7 MD5 of fc0c691db7e2d2bd3b0b4c1e24d18df72168b7d9 2026-05-07
FileHash-MD5 4b1cdff75d17f3f220153e8f42ab58c0 2026-05-07
FileHash-MD5 72ac1287a8d71b27c437ec1f379ab506 MD5 of 7356d7868c81499fb4e720f7c9530e5763b4c1d0 2026-05-07
FileHash-MD5 7331602726f61959d8f0e7820d457370 MD5 of 03e3ece9f48cf4104aafc535790ca2fb3c6b26cf 2026-05-07
FileHash-MD5 83d0381907cbb1e2ed5973ec76452695 2026-05-07
FileHash-MD5 8602aaca3ea117d7c948e4bee0aac2c8 2026-05-07
FileHash-MD5 a0830ce48537ba052f1d3b905d11a5bf MD5 of 2b81f78ec4c3f8d6cf8f677d141c5d13c35333af 2026-05-07
FileHash-MD5 a48b62e55a692bf6d1046d2be64d7150 MD5 of 59a9b9d47ae36411b277544f25ad2cc955d8dd2c 2026-05-07
FileHash-MD5 af767a0f2454a60b45f7adf79a4279b0 2026-05-07
FileHash-MD5 e862d56da1077be740ffaa7b5b699675 MD5 of 95bdb94f6767a3cce6d92363bbf5bc84b786bdb0 2026-05-07
References (1)
↗ https://www.welivesecurity.com/en/eset-research/rigged-game-scarcruft-compromises-gaming-platform-supply-chain-attack/#iocs