"100DaysofYARA - SpectralBlur" published by GregLesewich. #KANDYKORN, #TA444, #YARA, #CTI, #OSINT, #LAZARUS g-les.github.io/yara/2024/01/03/100DaysofYARA_SpectralBlur.html
Hear more from Greg Lesnewich on the rapidly evolving initial access methods employed by one of North Korea's cybercriminal groups, TA444, and the context for why North Korea must resort to cybercrime. https://youtu.be/LYHmTjFW-nY
TA444 using AppleScript and shell commands to drop payloads on macOS