Saturday, June 20, 2020

Analysis of LODEINFO Maldoc

20 June 2020

The LODEINFO malware has been targeting different sectors within Japan since around 2019. Sectors targeted include media and defense organizations.

Whomever is behind LODEINFO is actively developing and upgrading versions of the malware at a rapid pace. On 11 June, JPCert released a Japanese language article highlighting a recent uptick in LODEINFO detection's identifying a new version with unused code for ransomware attacks.

JPCert's Log Analysis Training

6 Aug 2020 About a week or so ago, JPCert released their Log Analysis training slides and corresponding CSV files for each hands-on exercise...