Skip to content

Overview of AppleSeed Dropper

02 June 2022

Summary

The Kimsuky APT Group has routinely utilized the AppleSeed Backdoor to target various entities within South Korea, mainly for the purposes of espionage.

While phishing still remains the primary vector of delivering the backdoor, over the past year, Kimsuky has gone to great lengths to disguise its attacks, utilizing numerous types of decoy files, packers, and encoding schemes.

Overview of AppleSeed Dropper