• bitcoinBitcoin (BTC) $ 85,783.00
  • ethereumEthereum (ETH) $ 2,013.49
  • tetherTether (USDT) $ 1.00
  • xrpXRP (XRP) $ 2.46
  • bnbBNB (BNB) $ 626.95
  • solanaSolana (SOL) $ 134.54
  • usd-coinUSDC (USDC) $ 0.999900
  • cardanoCardano (ADA) $ 0.730852
  • dogecoinDogecoin (DOGE) $ 0.174701
  • tronTRON (TRX) $ 0.230694
  • staked-etherLido Staked Ether (STETH) $ 2,012.44
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 85,698.00
  • chainlinkChainlink (LINK) $ 14.72
  • the-open-networkToncoin (TON) $ 3.65
  • leo-tokenLEO Token (LEO) $ 9.82
  • stellarStellar (XLM) $ 0.284705
  • wrapped-stethWrapped stETH (WSTETH) $ 2,412.43
  • usdsUSDS (USDS) $ 0.999480
  • hedera-hashgraphHedera (HBAR) $ 0.195447
  • avalanche-2Avalanche (AVAX) $ 19.16
  • pi-networkPi Network (PI) $ 1.17
  • suiSui (SUI) $ 2.43
  • shiba-inuShiba Inu (SHIB) $ 0.000013
  • litecoinLitecoin (LTC) $ 92.81
  • bitcoin-cashBitcoin Cash (BCH) $ 342.87
  • polkadotPolkadot (DOT) $ 4.46
  • mantra-daoMANTRA (OM) $ 6.85
  • wethWETH (WETH) $ 2,014.43
  • bitget-tokenBitget Token (BGB) $ 4.77
  • ethena-usdeEthena USDe (USDE) $ 1.00
  • binance-bridged-usdt-bnb-smart-chainBinance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 0.999954
  • hyperliquidHyperliquid (HYPE) $ 14.72
  • wrapped-eethWrapped eETH (WEETH) $ 2,140.74
  • whitebitWhiteBIT Coin (WBT) $ 28.64
  • uniswapUniswap (UNI) $ 6.82
  • moneroMonero (XMR) $ 208.85
  • susdssUSDS (SUSDS) $ 1.04
  • aptosAptos (APT) $ 5.50
  • nearNEAR Protocol (NEAR) $ 2.73
  • daiDai (DAI) $ 0.999975
  • pepePepe (PEPE) $ 0.000008
  • okbOKB (OKB) $ 51.99
  • internet-computerInternet Computer (ICP) $ 5.89
  • gatechain-tokenGate (GT) $ 22.81
  • ethereum-classicEthereum Classic (ETC) $ 18.18
  • tokenize-xchangeTokenize Xchange (TKX) $ 33.90
  • mantleMantle (MNT) $ 0.815207
  • ondo-financeOndo (ONDO) $ 0.869175
  • aaveAave (AAVE) $ 177.42
  • coinbase-wrapped-btcCoinbase Wrapped BTC (CBBTC) $ 85,815.00
  • vechainVeChain (VET) $ 0.026509
  • official-trumpOfficial Trump (TRUMP) $ 11.41
  • crypto-com-chainCronos (CRO) $ 0.081274
  • bittensorBittensor (TAO) $ 262.15
  • first-digital-usdFirst Digital USD (FDUSD) $ 0.999246
  • kaspaKaspa (KAS) $ 0.081634
  • cosmosCosmos Hub (ATOM) $ 4.67
  • ethenaEthena (ENA) $ 0.389109
  • filecoinFilecoin (FIL) $ 3.03
  • polygon-ecosystem-tokenPOL (ex-MATIC) (POL) $ 0.217237
  • lombard-staked-btcLombard Staked BTC (LBTC) $ 85,342.00
  • celestiaCelestia (TIA) $ 3.33
  • arbitrumArbitrum (ARB) $ 0.376857
  • render-tokenRender (RENDER) $ 3.35
  • fasttokenFasttoken (FTN) $ 4.03
  • sonic-3Sonic (prev. FTM) (S) $ 0.537229
  • algorandAlgorand (ALGO) $ 0.196489
  • entangleEntangle (NTGL) $ 0.002555
  • arbitrum-bridged-usdt-arbitrumArbitrum Bridged USDT (Arbitrum) (USDT) $ 1.00
  • optimismOptimism (OP) $ 0.898648
  • jupiter-exchange-solanaJupiter (JUP) $ 0.542397
  • story-2Story (IP) $ 5.54
  • fetch-aiArtificial Superintelligence Alliance (FET) $ 0.540653
  • kucoin-sharesKuCoin (KCS) $ 11.26
  • solv-btcSolv Protocol SolvBTC (SOLVBTC) $ 85,580.00
  • blackrock-usd-institutional-digital-liquidity-fundBlackRock USD Institutional Digital Liquidity Fund (BUIDL) $ 1.00
  • binance-peg-wethBinance-Peg WETH (WETH) $ 2,011.46
  • quant-networkQuant (QNT) $ 78.32
  • kelp-dao-restaked-ethKelp DAO Restaked ETH (RSETH) $ 2,091.72
  • nexoNEXO (NEXO) $ 1.11
  • xdce-crowd-saleXDC Network (XDC) $ 0.070713
  • movementMovement (MOVE) $ 0.452034
  • makerMaker (MKR) $ 1,279.05
  • dexeDeXe (DEXE) $ 19.21
  • worldcoin-wldWorldcoin (WLD) $ 0.894285
  • immutable-xImmutable (IMX) $ 0.582286
  • rocket-pool-ethRocket Pool ETH (RETH) $ 2,272.47
  • binance-staked-solBinance Staked SOL (BNSOL) $ 139.67
  • blockstackStacks (STX) $ 0.647187
  • usual-usdUsual USD (USD0) $ 0.997816
  • injective-protocolInjective (INJ) $ 9.98
  • sei-networkSei (SEI) $ 0.199892
  • theta-tokenTheta Network (THETA) $ 0.949660
  • the-graphThe Graph (GRT) $ 0.097001
  • flare-networksFlare (FLR) $ 0.015094
  • lido-daoLido DAO (LDO) $ 1.01
  • eosEOS (EOS) $ 0.587273
  • bonkBonk (BONK) $ 0.000012
  • polygon-bridged-usdt-polygonPolygon Bridged USDT (Polygon) (USDT) $ 0.999934
  • solv-protocol-solvbtc-bbnSolv Protocol SolvBTC.BBN (SOLVBTC.BB) $ 85,169.00
  • mantle-staked-etherMantle Staked Ether (METH) $ 2,132.82
  • paypal-usdPayPal USD (PYUSD) $ 0.999736
  • wbnbWrapped BNB (WBNB) $ 626.53
  • stargate-bridged-usdc-berachainStargate Bridged USDC (Berachain) (USDC.E) $ 0.999206
  • galaGALA (GALA) $ 0.017508
  • tezosTezos (XTZ) $ 0.725063
  • tether-goldTether Gold (XAUT) $ 3,053.37
  • binance-bridged-usdc-bnb-smart-chainBinance Bridged USDC (BNB Smart Chain) (USDC) $ 0.999768
  • pancakeswap-tokenPancakeSwap (CAKE) $ 2.50
  • the-sandboxThe Sandbox (SAND) $ 0.291862
  • bittorrentBitTorrent (BTT) $ 0.00000071
  • bitcoin-svBitcoin SV (BSV) $ 34.84
  • arbitrum-bridged-wbtc-arbitrum-oneArbitrum Bridged WBTC (Arbitrum One) (WBTC) $ 85,529.00
  • iotaIOTA (IOTA) $ 0.187020
  • jasmycoinJasmyCoin (JASMY) $ 0.014243
  • flowFlow (FLOW) $ 0.429994
  • jito-governance-tokenJito (JTO) $ 2.18
  • berachain-beraBerachain (BERA) $ 6.18
  • pax-goldPAX Gold (PAXG) $ 3,069.39
  • kaiaKaia (KAIA) $ 0.109645
  • msolMarinade Staked SOL (MSOL) $ 171.60
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 2,095.89
  • usdx-money-usdxStables Labs USDX (USDX) $ 1.00
  • flokiFLOKI (FLOKI) $ 0.000064
  • neoNEO (NEO) $ 8.46
  • curve-dao-tokenCurve DAO (CRV) $ 0.452033
  • ethereum-name-serviceEthereum Name Service (ENS) $ 17.49
  • heliumHelium (HNT) $ 3.23
  • telcoinTelcoin (TEL) $ 0.006310
  • jupiter-staked-solJupiter Staked SOL (JUPSOL) $ 147.17
  • kavaKava (KAVA) $ 0.513281
  • raydiumRaydium (RAY) $ 1.94
  • pyth-networkPyth Network (PYTH) $ 0.153322
  • resolv-usrResolv USR (USR) $ 1.00
  • axie-infinityAxie Infinity (AXS) $ 3.44
  • zcashZcash (ZEC) $ 34.64
  • honey-3Honey (HONEY) $ 1.00
  • beldexBeldex (BDX) $ 0.075777
  • dydx-chaindYdX (DYDX) $ 0.679004
  • elrond-erd-2MultiversX (EGLD) $ 18.24
  • decentralandDecentraland (MANA) $ 0.273576
  • true-usdTrueUSD (TUSD) $ 0.998884
  • dogwifcoindogwifhat (WIF) $ 0.498035
  • roninRonin (RON) $ 0.792511
  • mantle-restaked-ethMantle Restaked ETH (CMETH) $ 2,134.03
  • pumpbtcpumpBTC (PUMPBTC) $ 84,066.00
  • starknetStarknet (STRK) $ 0.170341
  • coredaoorgCore (CORE) $ 0.473077
  • l2-standard-bridged-weth-baseL2 Standard Bridged WETH (Base) (WETH) $ 2,013.86
  • arweaveArweave (AR) $ 7.06
  • conflux-tokenConflux (CFX) $ 0.091266
  • bridged-usdc-polygon-pos-bridgeBridged USDC (Polygon PoS Bridge) (USDC.E) $ 0.999966
  • binance-peg-dogecoinBinance-Peg Dogecoin (DOGE) $ 0.174489
  • plumePlume (PLUME) $ 0.220601
  • virtual-protocolVirtuals Protocol (VIRTUAL) $ 0.685195
  • ecasheCash (XEC) $ 0.000022
  • apenftAPENFT (NFT) $ 0.00000044
  • chilizChiliz (CHZ) $ 0.046204
  • bitcoin-avalanche-bridged-btc-bAvalanche Bridged BTC (Avalanche) (BTC.B) $ 85,865.00
  • thorchainTHORChain (RUNE) $ 1.24
  • super-oethSuper OETH (SUPEROETHB) $ 2,012.42
  • pudgy-penguinsPudgy Penguins (PENGU) $ 0.006907
  • apecoinApeCoin (APE) $ 0.540635
  • aerodrome-financeAerodrome Finance (AERO) $ 0.528016
  • clbtcclBTC (CLBTC) $ 83,922.00
  • arbitrum-bridged-weth-arbitrum-oneArbitrum Bridged WETH (Arbitrum One) (WETH) $ 2,014.62
  • ousgOUSG (OUSG) $ 110.37
  • pendlePendle (PENDLE) $ 2.51
  • hashnote-usycHashnote USYC (USYC) $ 1.08
  • usdbUSDB (USDB) $ 0.991719
  • spx6900SPX6900 (SPX) $ 0.436253
  • chain-2Onyxcoin (XCN) $ 0.011997
  • compound-governance-tokenCompound (COMP) $ 43.45
  • ondo-us-dollar-yieldOndo US Dollar Yield (USDY) $ 1.09
  • matic-networkPolygon (MATIC) $ 0.216850
  • fartcoinFartcoin (FARTCOIN) $ 0.383665
  • stakewise-v3-osethStakeWise Staked ETH (OSETH) $ 2,098.90
  • axelarAxelar (AXL) $ 0.403366
  • trust-wallet-tokenTrust Wallet (TWT) $ 0.898587
  • cgeth-hashkey-cloudcgETH Hashkey Cloud (CGETH.HASH) $ 2,078.52
  • infrared-beraInfrared Bera (IBERA) $ 5.48
  • ether-fi-staked-ethether.fi Staked ETH (EETH) $ 2,014.31
  • beam-2Beam (BEAM) $ 0.007005
  • grassGrass (GRASS) $ 1.31
  • tbtctBTC (TBTC) $ 85,648.00
  • olympusOlympus (OHM) $ 21.68
  • terra-lunaTerra Luna Classic (LUNC) $ 0.000065
  • fraxFrax (FRAX) $ 0.998707
  • lorenzo-stbtcLorenzo stBTC (STBTC) $ 85,127.00
  • amp-tokenAmp (AMP) $ 0.004122
  • gnosisGnosis (GNO) $ 129.38
  • mantle-bridged-usdt-mantleMantle Bridged USDT (Mantle) (USDT) $ 0.998391
  • based-brettBrett (BRETT) $ 0.033269
  • reserve-rights-tokenReserve Rights (RSR) $ 0.005845
  • mina-protocolMina Protocol (MINA) $ 0.267128
  • morphoMorpho (MORPHO) $ 1.39
  • kaitoKAITO (KAITO) $ 1.37
  • binance-peg-busdBinance-Peg BUSD (BUSD) $ 1.01
  • stakestone-berachain-vault-tokenStakeStone Berachain Vault Token (BERASTONE) $ 1,997.55
  • aioz-networkAIOZ Network (AIOZ) $ 0.279383
Bitcoin

Jamf Spots New MacOS Crypto Malware Attributed to North Korea’s Lazarus BlueNoroff Group

By admin
0 203

Jamf Spots New MacOS Crypto Malware Attributed to North Korea’s Lazarus BlueNoroff Group

  cryptonews.com 18 m

Jamf Spots New MacOS Crypto Malware Attributed to North Korea’s Lazarus BlueNoroff Group

BlueNoroff, the notorious hackers’ group with links to North Korea’s Lazarus, has debuted a fresh MacOS malware targeting financial institutions.

Uncovered by researchers from the Apple device management firm – Jamf, the perpetrators have been hiding behind a legitimate-looking cryptocurrency exchange.

According to a detailed report by Jamf published Tuesday, the malicious payload communicates with swissborg[.]blog domain, controlled by the attackers. The actors registered the domain on May 31 and hosted at an IP address, part of BlueNoroff infrastructure.

“The malware splits the command and control (C2) URL into two separate strings that get concatenated together. This is likely an attempt to evade static-based detection,” the report explains.

The news comes days after the infamous Lazarus Group used a new malware dubbed “Kandykorn” to target a crypto exchange. The group apparently deployed the advanced Kandykorn malware through a complex 5-stage process, featuring reflective loading.

BlueNoroff is a threat actor that specifically targets cryptocurrencies and crypto startups, and financial entities such as banks.

Jamf Threat Labs noted that the new malware, discovered at a later-stage, shares similar characteristics with BlueNoroff’s RustBucket campaign.

Identified in April this year, the campaign works to compromise macOS devices. Actors reach targets directly claiming to be an investor or head hunter, offering beneficial partnerships.

BlueNoroff also created a domain for the RustBucket campaign, that looks like it belongs to a legitimate crypto company. The aim was to blend with network activity to evade detection.

The Jamf team used the same method to detect the new malware. The new MacOS crypto-malware has links to several URLs from one domain, used for its communication, Jamf noted.

“The malware is written in Objective-C and operates as a very simple remote shell that executes shell commands sent from the attacker server.”

The perpetrators likely use the malware at a later stage to manually run commands after compromising a system, experts wrote. However, the researchers cleared that this malware at a glance is “very different” from the previously mentioned RustBucket malware.

“But the attacker’s focus in both cases seems to be providing simple remote shell capability,” they added.

Though the malware looks fairly simple it is “still very functional,” helping attackers carry out their objectives, the report said. The Jamf team names the new detection as “ObjCShellz,” considering it as a part of the RustBucket campaign.

“Based on previous attacks performed by BlueNoroff, we suspect that this malware was a late stage within a multi-stage malware delivered via social engineering.”

Source

admin 9442 posts 0 comments
You might also like More from author

Leave A Reply

Your email address will not be published.