Skip to content
The Nexus
SECURITYMay 25 · 09:32 UTCTHE HACKER NEWS[email protected] (The Hacker News)

Lazarus Deploys RemotePE Memory-Only RAT Against Financial and Crypto Firms

The Lazarus Group, linked to North Korea, has deployed a memory-only malware called RemotePE in multi-stage attacks targeting financial and cryptocurrency organizations. The attack chain involves two loaders, DPAPILoader and RemotePELoader, as analyzed by NCC Group subsidiary Fox-IT.

Nexus surfaces and summarizes. The full story lives at the source.

Mentioned
Spot something wrong with this article?Report a problem →
Forward this
Related Signal

Adjacent reporting