WeLiveSecurity WeLiveSecurity https://www.welivesecurity.com CySecBot CySecBot
WinorDLL64: A backdoor from the vast Lazarus arsenal?
The targeted region, and overlap in behavior and code, suggest the tool is used by the infamous North Korea-aligned APT group