WinorDLL64: A backdoor from the vast Lazarus arsenal?

February 23, 2023

The targeted region, and overlap in behavior and code, suggest the tool is used by the infamous North Korea-aligned APT group

The post WinorDLL64: A backdoor from the vast Lazarus arsenal? appeared first on WeLiveSecurity

Latest Posts

Earth Day 2024: Sophos Supports this Year’s Planet vs. Plastics Campaign

April 22, 2024

‘Junk gun’ ransomware: Peashooters can still pack a punch

April 17, 2024

Sophos Guidance on the Digital Operational Resilience Act (DORA)

April 15, 2024

A tumultuous, titanic Patch Tuesday as Microsoft makes some changes

April 10, 2024

Smoke and (screen) mirrors: A strange signed backdoor

April 9, 2024

Sophos Named Best MSP Solution by SE Labs

April 9, 2024

Introducing Sophos Managed Risk, Powered by Tenable

April 3, 2024

Unpatched Vulnerabilities: The Most Brutal Ransomware Attack Vector

April 3, 2024

It’s Oh So Quiet (?): The Sophos Active Adversary Report for 1H 2024

April 3, 2024

Sophos Firewall Once Again Recognized as the #1 Firewall Solution by G2 Users

April 1, 2024

The impact of compromised backups on ransomware outcomes

March 26, 2024

Sports Day Scores a Hit

March 21, 2024

Remote Desktop Protocol: The Series

March 20, 2024

Remote Desktop Protocol: Exposed RDP (is dangerous)

March 20, 2024

Remote Desktop Protocol: Queries for Investigation

March 20, 2024

Remote Desktop Protocol: How to Use Time Zone Bias

March 20, 2024

Remote Desktop Protocol: Executing the 4624_4625 Login Query

March 20, 2024

Remote Desktop Protocol: Executing the External RDP Query

March 20, 2024

Sophos named a Leader in Frost & Sullivan’s 2024 Frost Radar™ for Global Managed Detection and Response

March 19, 2024

Benchmarking the Security Capabilities of Large Language Models

March 18, 2024