A detailed analysis of Lazarus APT malware disguised as Notepad++ Shell Extension

Summary Lazarus has targeted its victims using job opportunities documents for companies such as LockHeed Martin, BAE Systems, and Boeing. In this case, the threat actor has targeted people that are looking for jobs at Boeing using a document called Boeing BDS MSE.docx (https://twitter.com/ShadowChasing1/status/1455489336850325519). The malware extracts the hostname, username, network information, a list of […]

A detailed analysis of Lazarus APT malware disguised as Notepad++ Shell Extension Read More »