← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
IOC - A rigged game: ScarCruft compromises gaming platform in a supply-chain attack
ESET researchers uncovered a multiplatform supply-chain attack by North Korea-aligned APT group ScarCruft, targeting the Yanbian region in China – home to ethnic Koreans and a crossing point for North Korean refugees and defectors. In the attack, probably ongoing since late 2024, ScarCruft compromised Windows and Android components of a video game platform dedicated to Yanbian-themed games, trojanizing them with a backdoor.
Indicators of Compromise (14 / 56 total)
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| FileHash-SHA1 | 01a33066fbc6253304c92760916329abd50c3191 | SHA1 of 23a1eacad84be4f2c5830755b1948582 | 2026-05-07 | |
| FileHash-SHA1 | 03e3ece9f48cf4104aafc535790ca2fb3c6b26cf | SHA1 of 7331602726f61959d8f0e7820d457370 | 2026-05-07 | |
| FileHash-SHA1 | 2b81f78ec4c3f8d6cf8f677d141c5d13c35333af | SHA1 of a0830ce48537ba052f1d3b905d11a5bf | 2026-05-07 | |
| FileHash-SHA1 | 2c6cc71b7e7e4b28c2c176b504bc5bdb687c4d41 | SHA1 of 1f3c8879349d5fcf973abbcee82fd069 | 2026-05-07 | |
| FileHash-SHA1 | 59a9b9d47ae36411b277544f25ad2cc955d8dd2c | SHA1 of a48b62e55a692bf6d1046d2be64d7150 | 2026-05-07 | |
| FileHash-SHA1 | 7356d7868c81499fb4e720f7c9530e5763b4c1d0 | SHA1 of 72ac1287a8d71b27c437ec1f379ab506 | 2026-05-07 | |
| FileHash-SHA1 | 95bdb94f6767a3cce6d92363bbf5bc84b786bdb0 | SHA1 of e862d56da1077be740ffaa7b5b699675 | 2026-05-07 | |
| FileHash-SHA1 | b06110e0feb7592872e380b7e3b8f77d80dd1108 | SHA1 of 2d397a2ca2d3bfc9c7a509d04376547b | 2026-05-07 | |
| FileHash-SHA1 | fc0c691db7e2d2bd3b0b4c1e24d18df72168b7d9 | SHA1 of 3d3d2dc34f01bcf890f185a5421836c7 | 2026-05-07 | |
| FileHash-SHA1 | 21ca0287ec5eaee8fb2f5d0542e378267d6ca0a6 | — | 2026-05-07 | |
| FileHash-SHA1 | 409c5acaed587f62f7e23da47f72c4d9ec3144d9 | — | 2026-05-07 | |
| FileHash-SHA1 | 5b70453ab58824a65ed0b6175c903aa022a87d6a | — | 2026-05-07 | |
| FileHash-SHA1 | d9a369e328ea4f1b8304b6e11b50275f798e9d6b | — | 2026-05-07 | |
| FileHash-SHA1 | f9f6c0184cee9c1e4e15c2a73e56d7b927ea685b | — | 2026-05-07 |