Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
North Korea's ScarCruft Deploys RokRAT Malware via LNK File Infection Chains
Threat Actors
May 02, 2023
The Hacker News
The North Korean threat actor known as ScarCruft began experimenting with oversized LNK files as a delivery route for RokRAT malware as early as July 2022, the same month Microsoft began blocking macros across Office documents by default.
Read More
North Korean hackers
ScarCruft APT
ROKRAT backdoor
LNK files
Multi-stage Infection Chain
Publisher
Previous
Apple releases first 'rapid' security fixes for iPhones ...
Malware and Vulnerabilities
Next
Alert: Active Exploitation of TP-Link, Apache, and Orac ...
Threat Intel & Info Sharing
/https://cyware-ent.s3.amazonaws.com/image_bank/d647_shutterstock_1437791249.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/f6de_shutterstock_2245073283.jpeg)
