APT group Lazarus maybe back using WinorDLL64 backdoor to exfiltrate data
0
0
ESET researchers have discovered the WinorDLL64 backdoor, one of the payloads of the Wslink downloader. The targeted region, and overlap in behavior and code, suggest the tool is used by the infamous North Korea-aligned APT group Lazarus.