VERY IMPORTANT

ESET researchers have discovered a previously undocumented Lazarus backdoor, which has been dubbed Vyveva, being used to attack a freight logistics company in South Africa. The backdoor consists of multiple components and communicates with its C&C server via the Tor network. So far, ESET has been able to find its installer, loader, and main payload – a backdoor with a TorSocket DLL. The previously unknown attack was discovered in June 2020.