popup

Cyber Threat Trends

  1. Day Week

Gemelli flickerflypro flickerfly

Summary: 2025/04/24 13:16

First reported date: 2017/02/07
Inquiry period : 2025/03/25 13:16 ~ 2025/04/24 13:16 (1 months), 21 search results

전 기간대비 29% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 lnk North Korea DPRK cti Konni 입니다.
악성코드 유형 Remcos RAT 도 새롭게 확인됩니다.
공격자 Gamaredon 도 새롭게 확인됩니다.
공격기술 Backdoor 캠페인 Phishing 도 새롭게 확인됩니다.
기관 및 기업 AhnLab South Korea SECUI Cisco ESTsecurity Genian 경찰청 도 새롭게 확인됩니다.
기타 slides Email URL Browser intelligence 등 신규 키워드도 확인됩니다.

 * 최근 뉴스기사 Top3:
    ㆍ 2025/04/23 Malicious LNK Disguised as a Notification
    ㆍ 2025/04/22 Malicious LNK Disguised as Notices
    ㆍ 2025/04/10 북한 해킹 그룹 Konni(코니)에서 만든 악성코드-ECRM.M.hwp.lnk(<-가칭,2025.3.24)

Trend graph by period


Related keyword cloud
Top 100
# Trend Count Comparison
1lnk 21 ▲ 6 (29%)
2North Korea 15 ▲ 7 (47%)
3DPRK 14 ▲ 9 (64%)
4cti 13 ▲ 8 (62%)
5Malware 11 ▼ -1 (-9%)
6Konni 8 ▲ 1 (13%)
7Campaign 6 ▲ 4 (67%)
8Kimsuky 5 ▲ 2 (40%)
9RokRAT 4 ▲ 3 (75%)
10북한 4 ▼ -1 (-25%)
11그룹 3 ▲ 2 (67%)
12위장 3 ▲ 2 (67%)
13APT 3 ▲ 2 (67%)
14hacking 3 ▼ -2 (-67%)
15악성코드 3 ▼ -1 (-33%)
16AhnLab 3 ▲ new
17APT37 3 ▲ 2 (67%)
18slides 2 ▲ new
19공격 2 ▲ 1 (50%)
20Email 2 ▲ new
21South Korea 2 ▲ new
22URL 2 ▲ new
23해킹 2 ▼ -1 (-50%)
24Browser 2 ▲ new
25김수 2 - 0 (0%)
26intelligence 2 ▲ new
27malicious 2 - 0 (0%)
28Remcos 2 ▲ new
29Backdoor 2 ▲ new
30NetWireRC 2 ▲ 1 (50%)
31Gamaredon 2 ▲ new
32자간 1 ▲ new
33협력 1 ▲ new
34Dive 1 ▲ new
35Into 1 ▲ new
36공유 1 ▲ new
37MultiStage 1 ▲ new
38코니 1 ▲ new
39GitHub 1 ▲ new
40Package 1 ▲ new
41Python 1 ▲ new
42Notification 1 ▲ new
43사례 1 ▲ new
44SECUI 1 ▲ new
45주요 1 ▲ new
46Deep 1 ▲ new
47대상 1 ▲ new
48최신 1 ▲ new
49위협 1 ▲ new
50수해 1 ▲ new
51한글 1 - 0 (0%)
52탈취 1 ▲ new
53문서 1 - 0 (0%)
54hwp 1 - 0 (0%)
55정보 1 ▲ new
56고지서 1 ▲ new
57Zipped 1 ▲ new
58캠페인 1 ▲ new
59ECRM 1 - 0 (0%)
60Talos 1 ▲ new
61신상 1 ▲ new
62성범죄자 1 ▲ new
63Exploit 1 - 0 (0%)
64target 1 - 0 (0%)
65Report 1 ▼ -1 (-100%)
66Phishing 1 ▲ new
67Cisco 1 ▲ new
68Criminal 1 ▲ new
69ESTsecurity 1 ▲ new
70Distribution 1 ▲ new
71유포 1 ▲ new
72논문 1 ▲ new
73학술 1 ▲ new
74d182834a984c9f5b44ea0aca5786223a78138ff23d33362ab699c76bf6987261 1 ▲ new
75정보공개 1 ▲ new
76Analysis 1 - 0 (0%)
77Password 1 ▲ new
78Police 1 - 0 (0%)
79BAT 1 ▲ new
80RAR 1 ▲ new
81file 1 ▲ new
82Korea 1 ▲ new
83South 1 ▲ new
84Targets 1 ▲ new
85Genian 1 ▲ new
86RAT 1 ▲ new
87사칭 1 ▲ new
88국가인권위 1 ▲ new
89경찰청 1 ▲ new
90autoit 1 ▲ new
91단체 1 ▼ -1 (-100%)
92Persistence 1 ▲ new
93Stealth 1 ▲ new
94ASEC 1 ▲ new
Special keyword group
Top 5
Malware Type
Malware Type

This is the type of malware that is becoming an issue.

Keyword Average Label
Konni
8 (47.1%)
RokRAT
4 (23.5%)
Remcos
2 (11.8%)
NetWireRC
2 (11.8%)
RAT
1 (5.9%)
Attacker & Actors
Attacker & Actors

The status of the attacker or attack group being issued.

Keyword Average Label
Kimsuky
5 (50%)
APT37
3 (30%)
Gamaredon
2 (20%)
Attack technique
Technique

This is an attack technique that is becoming an issue.

Keyword Average Label
Campaign
6 (31.6%)
APT
3 (15.8%)
hacking
3 (15.8%)
해킹
2 (10.5%)
Backdoor
2 (10.5%)
Country & Company
Country & Company

This is a country or company that is an issue.

Keyword Average Label
North Korea
15 (34.1%)
DPRK
14 (31.8%)
북한
4 (9.1%)
AhnLab
3 (6.8%)
South Korea
2 (4.5%)
Threat info
Last 5

SNS

(Total : 17)
  Total keyword

DPRK North Korea Malware Konni Kimsuky Campaign RokRAT 북한 APT37 APT NetWireRC 해킹 악성코드 hacking South Korea GitHub Password SECUI AhnLab Attacker Exploit 유포 Distribution ESTsecurity Cisco Gamaredon Phishing Remcos Report Backdoor target 경찰청 Police Genian 캠페인 RAT Criminal

No Title Date
1lazarusholic @lazarusholic
"A Deep Dive Into a Multi-Stage Malware Campaign Potentially Linked to DPRK’s Konni Group" published by @navneetr4j. #Konni, #LNK, #DPRK, #CTI https://t.co/3kYh8rE6kZ		2025.04.23
2lazarusholic @lazarusholic
"고지서를 위장하여 정보를 탈취하는 악성 LNK" published by @AhnLab_SecuInfo. #LNK, #DPRK, #CTI https://t.co/KvpLmDnc4j		2025.04.22
3lazarusholic @lazarusholic
"한글 문서로 위장한 두 공격 그룹의 악성코드 비교" published by @logpresso. #APT37, #Konni, #RokRAT, #LNK, #DPRK, #CTI https://t.co/BS7CiUDyVA		2025.04.18
4lazarusholic @lazarusholic
"북한 김수키(Kimsuky)에서 만든악성코드-KxS 북한 수해 인터뷰 요청서(대문?아카데미 이?열 이사장님).lnk(2025.4.5)" published by @sakaijjang. #Kimsuky, #LNK, #DPRK, #CTI https://t.co/xD36cJ4y1F		2025.04.17
5lazarusholic @lazarusholic
"공격자간 협력 사례 공유" published by Plainbit. #Kimsuky, #Konni, #LNK, #Slides, #DPRK, #CTI https://t.co/jFHTAujj8A		2025.04.15

News

(Total : 4)
  Total keyword

Malware intelligence Email Browser AhnLab Remcos 북한 악성코드 Campaign hacking Konni North Korea Gamaredon Backdoor

No Title Date
1Malicious LNK Disguised as a Notification - Malware.News2025.04.23
2Malicious LNK Disguised as Notices - ASEC BLOG2025.04.22
3북한 해킹 그룹 Konni(코니)에서 만든 악성코드-ECRM.M.hwp.lnk(<-가칭,2025.3.24) - Malware.News2025.04.10
4Gamaredon campaign abuses LNK files to distribute Remcos backdoor - Cisco Talos / Guilherme Venere / malpedia2025.03.28

Additional information

No data
No data
No data
No URL CC ASN Co Reporter Date
1http://193.233.48.64/Downloads/test.pdf.lnk
lnk 		RU RUOOO FREEnet GroupDaveLikesMalwre2025.04.22
2https://cpcalendars.auiesce.ru/Downloads/Commercial_Proposal_Request.pdf.lnk
lnk xml-opendir 		US USDaveLikesMalwre2025.04.20
3https://asd.tyamile.ru/Downloads/Commercial_Proposal_Request.pdf.lnk
Emmenhtal lnk xml-opendir 		US USCLOUDFLARENETDaveLikesMalwre2025.04.20
4https://ki46-mailscanner.000-0x2autxx-8yhx.cc/Downloads/Commercial_Proposal_Request.pdf.lnk
Emmenhtal lnk xml-opendir 		US USCLOUDFLARENETDaveLikesMalwre2025.04.20
5https://cpcontacts.auiesce.ru/Downloads/Commercial_Proposal_Request.pdf.lnk
Emmenhtal lnk xml-opendir 		US USDaveLikesMalwre2025.04.20
View only the last 5
Beta Service, If you select keyword, you can check detailed information.