Hacking News Lazarus Group Likely Using New WinorDLL64 Backdoor to Exfiltrate Sensitive Data

Hacking News Lazarus Group Likely Using New WinorDLL64 Backdoor to Exfiltrate Sensitive Data - Printable Version

+- (https://hackmyride.com/forum)
+-- Forum: Automotive Hacking (https://hackmyride.com/forum/forumdisplay.php?fid=211)
+--- Forum: News (https://hackmyride.com/forum/forumdisplay.php?fid=278)
+---- Forum: The Hacker News (https://hackmyride.com/forum/forumdisplay.php?fid=279)
+---- Thread: Hacking News Lazarus Group Likely Using New WinorDLL64 Backdoor to Exfiltrate Sensitive Data (/showthread.php?tid=706)

Lazarus Group Likely Using New WinorDLL64 Backdoor to Exfiltrate Sensitive Data - The Hacker News - 03-01-2023

Lazarus Group Likely Using New WinorDLL64 Backdoor to Exfiltrate Sensitive Data

A new backdoor associated with a malware downloader named Wslink has been discovered, with the tool likely used by the notorious North Korea-aligned Lazarus Group, new findings reveal.
The payload, dubbed WinorDLL64 by ESET, is a fully-featured implant that can exfiltrate, overwrite, and delete files; execute PowerShell commands; and obtain comprehensive information about the underlying machine.

https://thehackernews.com/2023/02/lazarus-group-using-new-winordll64.html