LetsDefend Monitoring Alert

Lazarus Phishing Campaign Detected (APT38)

Mar, 06, 2025, 07:15 AM

Event ID: 315

Event Time: Mar, 06, 2025, 07:15 AM

Rule Name: SOC337 - Lazarus Phishing Campaign Detected (APT38)

Alert Type: APT Group

MITRE Technique:
T1598.002 - Reconnaissance - Spearphishing Attachment,
T1566 - Initial Access - Phishing,
T1059.001 - Execution - Command and Scripting Interpreter: PowerShell,
T1059 - Execution - Command and Scripting Interpreter,
T1105 - Command and Control - Ingress Tool Transfer,
T1204.001 - Execution - User Execution: Malicious Link,

Severity: High

Incident Responder

2025 © LetsDefend

45305 Catalina ct. Suite 150, Sterling VA 20166