Kuhika
No Result
View All Result
Saturday, May 28, 2022
  • Home
  • News
  • Tech
  • Health
  • Entertainment
  • Economy
  • Bitcoin
  • Software & Services
  • Featured
  • Guide
  • Cryptocurrency
Kuhika
  • Home
  • News
  • Tech
  • Health
  • Entertainment
  • Economy
  • Bitcoin
  • Software & Services
  • Featured
  • Guide
  • Cryptocurrency
No Result
View All Result
Kuhika
No Result
View All Result

Home » VHD Ransomware Linked to North Korean Cyber-Army

VHD Ransomware Linked to North Korean Cyber-Army

by Admin
May 7, 2022
in Cyber Security News, Ransomware
Reading Time: 2 mins read
0
VHD Ransomware Linked to North Korean Cyber-Army
Share on FacebookShare on Twitter
VHD Ransomware

Experts from Trellix discovered that the VHD Ransomware is linked to the North Korean cyber army. The North Korean cyber army has been divided into units, all of which have different tasks and report to the ‘Bureau (or Lab) 121’.

Unit 180, also known as APT38 was responsible for attacks on foreign financial systems, including banks and cryptocurrency exchanges.

The report said Unit 180 actors generally resided in outside countries such as China, Russia, Malaysia, Thailand, Bangladesh, Indonesia, India, Kenya and Mozambique to hide the unit’s links to the hermit kingdom of North Korea.

Also, defectors have revealed that obtaining funds for the government is carried out by more actors than the country’s ‘elite hackers’.

VHD Ransomware

VHD is a standard ransomware tool that spreads through the drives connected to the target device, encrypts all files, and deletes all system volume information folders preventing the affected system from being recovered.

Researchers used source code from the VHD ransomware family and identified the following families:

  • BEAF Ransomware
  • PXJ Ransomware
  • ZZZZ ransomware
  • CHiCHi . Ransomware

From the analysis, the four letters of the ransomware “BEAF” (BEAF is the extension used for encrypted files), are exactly the same as the first four bytes of the handshake of the APT38 tool known as Beefeater.

ZZZZ ransomware is a replica of the Beaf ransomware family. The researchers say the Tflower and ChiChi families share some small code with VHD, but that it will be more general functionality than typical shared code and functionality.

Experts used Hilbert curves to visualize code from different malware families and found that Tflower and ChiChi were very different when compared to VHD.

Images containing text Description are generated automatically
Hilbert curve resemblance

To identify financial traces with overlap between families, researchers extracted Bitcoin (BTC) wallet addresses and started tracking and monitoring transactions.

“We did not find any overlap in transfer wallets between families. However, we found that the ransom amount paid was relatively small,” the researchers said.

final word

According to experts from Trellix, apart from global banks, blockchain providers and users from South Korea were also attacked using spear-phishing emails, fake mobile apps, as well as fake companies.

All of these attacks appear to have targeted the APAC region with targets in Japan and Malaysia. Therefore, experts suspect this attack might be carried out to find out if ransomware is a valuable way to earn money.

“Based on our research, combined intelligence, and observations of smaller targeted ransomware attacks, Trellix associates it with DPRK-affiliated hackers with high confidence,” concludes the blog.

Source

Share61Tweet38SendSharePin14
Admin

Admin

Business people work with me to develop their interpersonal skills so they effectively empathize and make productive connections with their key staff members. Let’s quickly turn your people skills into your superpower and create a workplace where people work well together and deliver excellent results.




  • Trending
  • Comments
  • Latest
10 Minecraft 1.18 Jungle Seeds You Need to Try in 2022

10 Best Minecraft 1.18 Forest Seeds You Must Try

January 20, 2022
How To Open Mac Terminal in Folder From Finder?  – Easy Guide

How To Open Mac Terminal in Folder From Finder? – Easy Guide

January 22, 2022
How to Remove Scan Folder in Windows Defender – Antivirus Configuration

How to Remove Scan Folder in Windows Defender – Antivirus Configuration

January 20, 2022
How To Install DaVinci Resolve on Ubuntu 20.04 or Other Linux Terminals?

How To Install DaVinci Resolve on Ubuntu 20.04 or Other Linux Terminals?

January 24, 2022
What are stablecoins?

What are stablecoins?

0
5 Scariest Hacks in 2022

5 Scariest Hacks in 2022

0
What is a Cybersecurity Risk Assessment?

What is a Cybersecurity Risk Assessment?

0
Biden's war against inflation is a battle to change human behavior

Biden’s war against inflation is a battle to change human behavior

0
2 Direksi Wanita bank bjb Masuk TOP 100 Most Oustanding Women 2022

2 Direksi Wanita bank bjb Masuk TOP 100 Most Oustanding Women 2022

May 21, 2022
PGA Championship 2022 live stream: How to watch major golf online and Tiger Woods tee time

PGA Championship 2022 live stream: How to watch major golf online and Tiger Woods tee time

May 21, 2022
How to Enable the New Chrome OS Launcher on Your Chromebook

How to Activate the New Chrome OS Launcher on Your Chromebook

May 21, 2022
'Riverdale' will end with a bang: Everything you need to know about the CW show's seventh and final season

‘Riverdale’ will end with a bang: Everything you need to know about the CW show’s seventh and final season

May 20, 2022

Recent News

2 Direksi Wanita bank bjb Masuk TOP 100 Most Oustanding Women 2022

2 Direksi Wanita bank bjb Masuk TOP 100 Most Oustanding Women 2022

May 21, 2022
PGA Championship 2022 live stream: How to watch major golf online and Tiger Woods tee time

PGA Championship 2022 live stream: How to watch major golf online and Tiger Woods tee time

May 21, 2022

Categories

  • Home
  • News
  • Tech
  • Health
  • Entertainment
  • Economy
  • Bitcoin
  • Software & Services
  • Featured
  • Guide
  • Cryptocurrency

About

  • About Us
  • Contact Us
  • Privacy Policy
Kuhika

Find the latest breaking news and information on the top stories, weather, business, entertainment, politics, and more.

Copyright @ 2022 Kuhika. All right reserved

No Result
View All Result
  • Home
  • News
  • Tech
  • Health
  • Entertainment
  • Economy
  • Bitcoin
  • Software & Services
  • Featured
  • Guide
  • Cryptocurrency

Copyright @ 2022 Kuhika. All right reserved