Dolphin, a sophisticated backdoor extending the arsenal of the ScarCruft APT group
released on 2022-11-30 @ 03:54:38 PM
ESET researchers have uncovered a new backdoor used by the ScarCruft APT group, which was used as the final payload in a multistage attack on a South Korean newspaper in 2021. The backdoor, which ESES has named Dolphin, has a wide range of spying capabilities, including monitoring drives and portable devices and exfiltrating files of interest, keylogging and taking screenshots, and stealing credentials from browsers.