CINDRCINDR
← All Reports
Critical
Asia-PacificNovember 15, 2024

Lazarus Group: Supply Chain Attack Campaign

Abstract

Analysis of a sophisticated supply chain attack targeting software development companies. This report details reconnaissance techniques, payload delivery mechanisms, and persistence methods used by the Lazarus Group in their 2024 campaign.

Full report content is available below. Section headings, IOCs, and MITRE ATT&CK mappings are included in the complete report.

Refer to the original [slug]/page.tsx for the full content rendering logic. The redesigned page wrapper, metadata, and sidebar layout are contained in this file.

Need deeper analysis?

Contact our threat intelligence team for custom threat hunting, TTP mapping, or tactical recommendations for your environment.

Contact Us
Tags
APTSupply ChainMalwareLazarus
Indicators of Compromise
File Hashes
d41a7dfab38b0c2b0e5f2e8d7c3a4b1f
a2b8c9d3e1f4g5h6i7j8...
IP Addresses
185.220.101.45
89.163.128.229
Domains
malware-updates[.]cc
software-patches[.]io
MITRE ATT&CK
T1566.001T1195T1547T1140T1041
More Reports
APT28: Infrastructure and Operational Security Evolution
Oct 2024
Volt Typhoon: Maritime Sector Targeting Intelligence
Sep 2024
Scattered Spider: Ransomware Operation Evolution
Aug 2024