• bitcoinBitcoin (BTC) $ 91,443.00
  • ethereumEthereum (ETH) $ 3,309.76
  • tetherTether (USDT) $ 0.997141
  • xrpXRP (XRP) $ 2.01
  • bnbBNB (BNB) $ 689.28
  • solanaSolana (SOL) $ 186.86
  • dogecoinDogecoin (DOGE) $ 0.308369
  • usd-coinUSDC (USDC) $ 0.999406
  • staked-etherLido Staked Ether (STETH) $ 3,301.93
  • cardanoCardano (ADA) $ 0.834061
  • tronTRON (TRX) $ 0.250658
  • avalanche-2Avalanche (AVAX) $ 35.06
  • wrapped-stethWrapped stETH (WSTETH) $ 3,993.19
  • the-open-networkToncoin (TON) $ 5.49
  • chainlinkChainlink (LINK) $ 20.23
  • shiba-inuShiba Inu (SHIB) $ 0.000021
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 91,412.00
  • suiSui (SUI) $ 3.98
  • hedera-hashgraphHedera (HBAR) $ 0.266597
  • polkadotPolkadot (DOT) $ 6.61
  • wethWETH (WETH) $ 3,316.13
  • stellarStellar (XLM) $ 0.323635
  • hyperliquidHyperliquid (HYPE) $ 26.89
  • bitget-tokenBitget Token (BGB) $ 6.19
  • bitcoin-cashBitcoin Cash (BCH) $ 430.47
  • leo-tokenLEO Token (LEO) $ 9.05
  • uniswapUniswap (UNI) $ 12.86
  • litecoinLitecoin (LTC) $ 98.24
  • pepePepe (PEPE) $ 0.000018
  • wrapped-eethWrapped eETH (WEETH) $ 3,493.21
  • ethena-usdeEthena USDe (USDE) $ 0.994238
  • nearNEAR Protocol (NEAR) $ 4.99
  • usdsUSDS (USDS) $ 0.998957
  • aaveAave (AAVE) $ 326.96
  • aptosAptos (APT) $ 8.78
  • internet-computerInternet Computer (ICP) $ 9.79
  • mantleMantle (MNT) $ 1.18
  • crypto-com-chainCronos (CRO) $ 0.140602
  • polygon-ecosystem-tokenPOL (ex-MATIC) (POL) $ 0.453248
  • ethereum-classicEthereum Classic (ETC) $ 24.86
  • whitebitWhiteBIT Coin (WBT) $ 24.43
  • render-tokenRender (RENDER) $ 6.66
  • vechainVeChain (VET) $ 0.042672
  • moneroMonero (XMR) $ 183.86
  • mantra-daoMANTRA (OM) $ 3.54
  • daiDai (DAI) $ 0.999202
  • virtual-protocolVirtuals Protocol (VIRTUAL) $ 3.31
  • bittensorBittensor (TAO) $ 445.03
  • fetch-aiArtificial Superintelligence Alliance (FET) $ 1.26
  • arbitrumArbitrum (ARB) $ 0.726819
  • filecoinFilecoin (FIL) $ 4.80
  • okbOKB (OKB) $ 49.42
  • kaspaKaspa (KAS) $ 0.113382
  • ethenaEthena (ENA) $ 0.964082
  • algorandAlgorand (ALGO) $ 0.312634
  • cosmosCosmos Hub (ATOM) $ 6.16
  • optimismOptimism (OP) $ 1.79
  • tokenize-xchangeTokenize Xchange (TKX) $ 29.92
  • bonkBonk (BONK) $ 0.000031
  • immutable-xImmutable (IMX) $ 1.32
  • theta-tokenTheta Network (THETA) $ 2.25
  • blockstackStacks (STX) $ 1.48
  • celestiaCelestia (TIA) $ 4.71
  • first-digital-usdFirst Digital USD (FDUSD) $ 0.998487
  • movementMovement (MOVE) $ 0.939214
  • fantomFantom (FTM) $ 0.740988
  • binance-peg-wethBinance-Peg WETH (WETH) $ 3,315.69
  • gatechain-tokenGate (GT) $ 15.50
  • ondo-financeOndo (ONDO) $ 1.34
  • injective-protocolInjective (INJ) $ 19.61
  • the-graphThe Graph (GRT) $ 0.200044
  • pudgy-penguinsPudgy Penguins (PENGU) $ 0.030255
  • usual-usdUsual USD (USD0) $ 0.998271
  • dogwifcoindogwifhat (WIF) $ 1.81
  • rocket-pool-ethRocket Pool ETH (RETH) $ 3,719.74
  • worldcoin-wldWorldcoin (WLD) $ 2.05
  • sei-networkSei (SEI) $ 0.398330
  • flokiFLOKI (FLOKI) $ 0.000172
  • lido-daoLido DAO (LDO) $ 1.84
  • kelp-dao-restaked-ethKelp DAO Restaked ETH (RSETH) $ 3,406.02
  • coinbase-wrapped-btcCoinbase Wrapped BTC (CBBTC) $ 91,550.00
  • jasmycoinJasmyCoin (JASMY) $ 0.031581
  • thorchainTHORChain (RUNE) $ 4.40
  • mantle-staked-etherMantle Staked Ether (METH) $ 3,489.24
  • ai16zai16z (AI16Z) $ 1.31
  • lombard-staked-btcLombard Staked BTC (LBTC) $ 91,615.00
  • fasttokenFasttoken (FTN) $ 3.35
  • galaGALA (GALA) $ 0.033729
  • raydiumRaydium (RAY) $ 4.81
  • flare-networksFlare (FLR) $ 0.025024
  • beam-2Beam (BEAM) $ 0.025363
  • tezosTezos (XTZ) $ 1.28
  • kucoin-sharesKuCoin (KCS) $ 10.98
  • makerMaker (MKR) $ 1,472.71
  • pyth-networkPyth Network (PYTH) $ 0.360672
  • the-sandboxThe Sandbox (SAND) $ 0.528876
  • nexoNEXO (NEXO) $ 1.26
  • binance-staked-solBinance Staked SOL (BNSOL) $ 191.43
  • solv-btcSolv Protocol SolvBTC (SOLVBTC) $ 91,329.00
  • based-brettBrett (BRETT) $ 0.118804
  • curve-dao-tokenCurve DAO (CRV) $ 0.906663
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 3,417.26
  • eosEOS (EOS) $ 0.755638
  • kaiaKaia (KAIA) $ 0.191640
  • ethereum-name-serviceEthereum Name Service (ENS) $ 32.48
  • flowFlow (FLOW) $ 0.691620
  • jupiter-exchange-solanaJupiter (JUP) $ 0.793346
  • heliumHelium (HNT) $ 5.93
  • starknetStarknet (STRK) $ 0.464113
  • dydx-chaindYdX (DYDX) $ 1.46
  • xdce-crowd-saleXDC Network (XDC) $ 0.068817
  • msolMarinade Staked SOL (MSOL) $ 234.61
  • arweaveArweave (AR) $ 15.77
  • aerodrome-financeAerodrome Finance (AERO) $ 1.42
  • bittorrentBitTorrent (BTT) $ 0.000001
  • iotaIOTA (IOTA) $ 0.279479
  • bitcoin-svBitcoin SV (BSV) $ 50.52
  • coredaoorgCore (CORE) $ 1.06
  • neoNEO (NEO) $ 13.58
  • axie-infinityAxie Infinity (AXS) $ 6.05
  • elrond-erd-2MultiversX (EGLD) $ 33.30
  • jito-governance-tokenJito (JTO) $ 3.32
  • zcashZcash (ZEC) $ 58.10
  • solv-protocol-solvbtc-bbnSolv Protocol SolvBTC.BBN (SOLVBTC.BB) $ 91,129.00
  • ether-fi-staked-ethether.fi Staked ETH (EETH) $ 3,294.44
  • matic-networkPolygon (MATIC) $ 0.452386
  • decentralandDecentraland (MANA) $ 0.464407
  • aioz-networkAIOZ Network (AIOZ) $ 0.757696
  • apecoinApeCoin (APE) $ 1.19
  • wormholeWormhole (W) $ 0.301860
  • pendlePendle (PENDLE) $ 5.15
  • wbnbWrapped BNB (WBNB) $ 691.14
  • mog-coinMog Coin (MOG) $ 0.000002
  • fartcoinFartcoin (FARTCOIN) $ 0.799358
  • spx6900SPX6900 (SPX) $ 0.852088
  • arbitrum-bridged-wbtc-arbitrum-oneArbitrum Bridged WBTC (Arbitrum One) (WBTC) $ 91,373.00
  • l2-standard-bridged-weth-baseL2 Standard Bridged WETH (Base) (WETH) $ 3,312.91
  • popcatPopcat (POPCAT) $ 0.781219
  • chilizChiliz (CHZ) $ 0.081728
  • usddUSDD (USDD) $ 0.995688
  • eigenlayerEigenlayer (EIGEN) $ 3.56
  • dexeDeXe (DEXE) $ 12.97
  • conflux-tokenConflux (CFX) $ 0.154138
  • arbitrum-bridged-weth-arbitrum-oneArbitrum Bridged WETH (Arbitrum One) (WETH) $ 3,315.97
  • reserve-rights-tokenReserve Rights (RSR) $ 0.013406
  • jupiter-staked-solJupiter Staked SOL (JUPSOL) $ 200.25
  • pancakeswap-tokenPancakeSwap (CAKE) $ 2.45
  • gnosisGnosis (GNO) $ 272.24
  • akash-networkAkash Network (AKT) $ 2.80
  • zksyncZKsync (ZK) $ 0.188614
  • mina-protocolMina Protocol (MINA) $ 0.573475
  • roninRonin (RON) $ 1.84
  • peanut-the-squirrelPeanut the Squirrel (PNUT) $ 0.675458
  • binance-peg-dogecoinBinance-Peg Dogecoin (DOGE) $ 0.310212
  • compound-governance-tokenCompound (COMP) $ 75.29
  • ecasheCash (XEC) $ 0.000033
  • havvenSynthetix Network (SNX) $ 1.94
  • dydxdYdX (ETHDYDX) $ 1.46
  • echelon-primeEchelon Prime (PRIME) $ 12.78
  • fraxFrax (FRAX) $ 0.991392
  • tether-goldTether Gold (XAUT) $ 2,596.76
  • mantle-restaked-ethMantle Restaked ETH (CMETH) $ 3,491.71
  • amp-tokenAmp (AMP) $ 0.007580
  • gigachad-2Gigachad (GIGA) $ 0.065881
  • ether-fi-staked-btcEther.fi Staked BTC (EBTC) $ 91,550.00
  • turboTurbo (TURBO) $ 0.009115
  • notcoinNotcoin (NOT) $ 0.006151
  • superfarmSuperVerse (SUPER) $ 1.38
  • axelarAxelar (AXL) $ 0.681578
  • terra-lunaTerra Luna Classic (LUNC) $ 0.000107
  • susdssUSDS (SUSDS) $ 1.02
  • cat-in-a-dogs-worldcat in a dogs world (MEW) $ 0.006551
  • dog-go-to-the-moon-runeDog (Bitcoin) (DOG) $ 0.005726
  • layerzeroLayerZero (ZRO) $ 5.15
  • oasis-networkOasis (ROSE) $ 0.084300
  • grassGrass (GRASS) $ 2.31
  • coinbase-wrapped-staked-ethCoinbase Wrapped Staked ETH (CBETH) $ 3,596.48
  • livepeerLivepeer (LPT) $ 14.97
  • ordinalsORDI (ORDI) $ 26.31
  • beldexBeldex (BDX) $ 0.079486
  • paypal-usdPayPal USD (PYUSD) $ 0.998297
  • 1inch1inch (1INCH) $ 0.381531
  • vanaVana (VANA) $ 17.10
  • kusamaKusama (KSM) $ 32.72
  • chex-tokenCHEX Token (CHEX) $ 0.521837
  • pax-goldPAX Gold (PAXG) $ 2,620.47
  • apenftAPENFT (NFT) $ 0.00000052
  • blurBlur (BLUR) $ 0.242718
  • safeSafe (SAFE) $ 0.984819
  • usdx-money-usdxusdx.money USDX (USDX) $ 0.994199
  • nervos-networkNervos Network (CKB) $ 0.011059
  • baby-doge-coinBaby Doge Coin (BABYDOGE) $ 0.00000000
  • aixbtaixbt by Virtuals (AIXBT) $ 0.501639
  • bitcoin-avalanche-bridged-btc-bAvalanche Bridged BTC (Avalanche) (BTC.B) $ 91,639.00
  • true-usdTrueUSD (TUSD) $ 0.996546
  • kavaKava (KAVA) $ 0.452245
  • frax-etherFrax Ether (FRXETH) $ 3,299.76
  • pumpbtcpumpBTC (PUMPBTC) $ 90,133.00
  • usualUsual (USUAL) $ 0.984428
  • polygon-pos-bridged-weth-polygon-posPolygon PoS Bridged WETH (Polygon POS) (WETH) $ 3,318.01
Bitcoin

Jamf Spots New MacOS Crypto Malware Attributed to North Korea’s Lazarus BlueNoroff Group

By admin
0 184

Jamf Spots New MacOS Crypto Malware Attributed to North Korea’s Lazarus BlueNoroff Group

  cryptonews.com 18 m

Jamf Spots New MacOS Crypto Malware Attributed to North Korea’s Lazarus BlueNoroff Group

BlueNoroff, the notorious hackers’ group with links to North Korea’s Lazarus, has debuted a fresh MacOS malware targeting financial institutions.

Uncovered by researchers from the Apple device management firm – Jamf, the perpetrators have been hiding behind a legitimate-looking cryptocurrency exchange.

According to a detailed report by Jamf published Tuesday, the malicious payload communicates with swissborg[.]blog domain, controlled by the attackers. The actors registered the domain on May 31 and hosted at an IP address, part of BlueNoroff infrastructure.

“The malware splits the command and control (C2) URL into two separate strings that get concatenated together. This is likely an attempt to evade static-based detection,” the report explains.

The news comes days after the infamous Lazarus Group used a new malware dubbed “Kandykorn” to target a crypto exchange. The group apparently deployed the advanced Kandykorn malware through a complex 5-stage process, featuring reflective loading.

BlueNoroff is a threat actor that specifically targets cryptocurrencies and crypto startups, and financial entities such as banks.

Jamf Threat Labs noted that the new malware, discovered at a later-stage, shares similar characteristics with BlueNoroff’s RustBucket campaign.

Identified in April this year, the campaign works to compromise macOS devices. Actors reach targets directly claiming to be an investor or head hunter, offering beneficial partnerships.

BlueNoroff also created a domain for the RustBucket campaign, that looks like it belongs to a legitimate crypto company. The aim was to blend with network activity to evade detection.

The Jamf team used the same method to detect the new malware. The new MacOS crypto-malware has links to several URLs from one domain, used for its communication, Jamf noted.

“The malware is written in Objective-C and operates as a very simple remote shell that executes shell commands sent from the attacker server.”

The perpetrators likely use the malware at a later stage to manually run commands after compromising a system, experts wrote. However, the researchers cleared that this malware at a glance is “very different” from the previously mentioned RustBucket malware.

“But the attacker’s focus in both cases seems to be providing simple remote shell capability,” they added.

Though the malware looks fairly simple it is “still very functional,” helping attackers carry out their objectives, the report said. The Jamf team names the new detection as “ObjCShellz,” considering it as a part of the RustBucket campaign.

“Based on previous attacks performed by BlueNoroff, we suspect that this malware was a late stage within a multi-stage malware delivered via social engineering.”

Source

admin 8700 posts 0 comments
You might also like More from author

Leave A Reply

Your email address will not be published.