LIGHTSHOW

Description

(Mandiant) LIGHTSHOW is a utility that was used by UNC2970 to manipulate kernel data-structures and represents an advancement in DPRK’s capabilities to evade detection.

Names

Name
LIGHTSHOW
FudModule

Type

Poisoning

Information

https://www.mandiant.com/resources/blog/lightshift-and-lightshow

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.fudmodule

Other Information

Uuid

c28d6028-a6c9-4eba-acfb-62579e176b64

Last Card Change

2023-10-13

Threat Intelligence Garden

Explorer

LIGHTSHOW

LIGHTSHOW

Description

Names

Category

Type

Information

Malpedia

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks