KP

Opal SleetOpal Sleet

Also known as: OSMIUM · Konni · Vedalia · Opal Sleet

Origin
KP
Known aliases
4

Profile

Konni is a threat actor associated with APT37, a North Korean cyber crime group. They have been active since 2012 and are known for their cyber-espionage activities. Konni has targeted various sectors, including education, government, business organizations, and the cryptocurrency industry. They have exploited vulnerabilities such as CVE-2023-38831 and have used malware like KonniRAT to gain control of victim hosts and steal important information.

Aliases· 4

OSMIUMKonniVedaliaOpal Sleet

References

  1. https://nsfocusglobal.com/the-new-apt-group-darkcasino-and-the-global-surge-in-winrar-0-day-exploits/
  2. https://paper.seebug.org/3031/
  3. https://www.rewterz.com/rewterz-news/rewterz-threat-alert-konni-apt-group-active-iocs-11
  4. https://www.securonix.com/blog/stiffbizon-detection-new-attack-campaign-observed/
  5. https://gbhackers.com/vedalia-apt-group-exploits/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
APT37
Software
KONNI
Actor
Ruby Sleet
Actor
APT45
Actor
Contagious Interview
Actor
APT33
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.