일단 해당 악성코드는 어제 작성한 글인 pay.bat에서 악성코드를 실행했을 때 드롭박스에서 연결된 파워셀 코드입니다.일단 해쉬값은 다음과 같습니다.파일명:system_first.ps1사이즈:1,532 BytesMD5:e598db51ddee48b7c351b68aebf76ebfSHA-1:60cdedb455…

Introduction to Malware Binary Triage (IMBT) Course

Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any flavor of the Malware Binary Triage (IMBT) course starting this Black Friday and Cyber Monday!

Enroll Now and Save 10%: Coupon Code MWNEWS10

Note: This is an affiliate link – your enrollment helps support this platform at no extra cost to you.

Article Link: 북한 APT 김수키(Kimsuky)에서 만든 악성코드-system_first.ps1(2024.11.27)

1 post – 1 participant

Read full topic

​일단 해당 악성코드는 어제 작성한 글인 pay.bat에서 악성코드를 실행했을 때 드롭박스에서 연결된 파워셀 코드입니다.일단 해쉬값은 다음과 같습니다.파일명:system_first.ps1사이즈:1,532 BytesMD5:e598db51ddee48b7c351b68aebf76ebfSHA-1:60cdedb455…

Introduction to Malware Binary Triage (IMBT) Course
Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any flavor of the Malware Binary Triage (IMBT) course starting this Black Friday and Cyber Monday!
Enroll Now and Save 10%: Coupon Code MWNEWS10
Note: This is an affiliate link – your enrollment helps support this platform at no extra cost to you.

Article Link: 북한 APT 김수키(Kimsuky)에서 만든 악성코드-system_first.ps1(2024.11.27)
1 post – 1 participant
Read full topic