Koredos

Description

(Symantec) In 2011, organizations in South Korea were yet again targeted by DDoS attacks. Similar to 2009, a number of government and private websites were targeted, this time using a tool called Trojan.Koredos. This attack was unusual for a DDoS attack because it did not use a command and control (C&C) server; the commands were hidden inside the threat itself. The use of a tactic like this indicated a growth in sophistication from the group compared to the 2009 attacks. Symantec research into this threat also found that, as well as carrying out a DDoS attack, if the infected computers were not cleared of this Trojan the master boot record (MBR) of some of them would be destroyed within 10 days.

Names

Name
Koredos

Type

DDoS
Wiper

Information

https://medium.com/threat-intel/lazarus-attacks-wannacry-5fdeddee476c

Other Information

Uuid

cfb71534-8ca8-4c87-b2b9-9cbe59f98585

Last Card Change

2020-04-20

Threat Intelligence Garden

Explorer

Koredos

Koredos

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks