The US Department of Homeland Security (DHS) has published a report about a newly uncovered malware strain that is linked to the infamous North Korean hacking group Hidden Cobra aka Lazarus.
The malware, dubbed Hoplight, is a backdoor Trojan that has the ability to:
- “Read, Write, and Move Files;
- Enumerate System Drives;
- Create and Terminate Processes;
- Inject into Running Processes;
- Create, Start and Stop Services;
- Modify Registry Settings;
- Connect to a Remote Host;
- Upload and Download Files”