Circumstances of an Attack Exploiting an Asset Management Program (Andariel Group)

The ASEC analysis team identified the circumstances of the Andariel group distributing malware via an attack using a certain asset management program. The Andariel group is known to be in a cooperative relationship with or a subsidiary organization of the Lazarus group. The Andariel group usually launches spear phishing, watering hole, or supply chain attacks for initial penetration. There is also a case where the group exploited a central management solution during the malware installation process. Recently, the Andariel group... …

analysis andariel asec asset asset management attack exploiting lazarus lazarus group malware malware information management nukesped organization phishing program relationship spear phishing team tigerrat