สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์
Electronic Transactions Development Agency

Report

Home > List all groups > List all tools > List all groups using tool LODEINFO

Threat Group Cards: A Threat Actor Encyclopedia

Tool: LODEINFO

Names	LODEINFO
Category	Malware
Type	Backdoor
Description	(JPCERT/CC) LODEINFO communicates with specific hosts and operates according to the commands received from there.
Information	<https://blogs.jpcert.or.jp/en/2020/02/malware-lodeinfo-targeting-japan.html> <https://securelist.com/apt10-tracking-down-lodeinfo-2022-part-i/107742/> <https://securelist.com/apt10-tracking-down-lodeinfo-2022-part-ii/107745/> <https://blog-en.itochuci.co.jp/entry/2024/01/24/134100>
Malpedia	<https://malpedia.caad.fkie.fraunhofer.de/details/win.lodeinfo>

Last change to this tool card: 06 March 2024

Download this tool card in JSON format

All groups using tool LODEINFO

Changed	Name	Country	Observed
APT groups
	Operation LiberalFace, MirrorFace		2022
	Stone Panda, APT 10, menuPass		2006-Feb 2022

2 groups listed (2 APT, 0 other, 0 unknown)

Digital Service Security Center
Electronic Transactions Development Agency

Follow us on

Report incidents

+66 (0)2-123-1227

[email protected]