Practical APT Group Hash Unit Profiling Framework Using TTPs
With the rise of cyber threats, identifying APT groups becomes increasingly crucial for enterprise security experts. This paper introduces a comprehensive framework for profiling APT groups, focusing on Lazarus and APT29. It underscores the critical role of malware hash unit profiling in contemporar...
Saved in:
| Published in | IEICE Transactions on Information and Systems Vol. E107.D; no. 12; pp. 2024EDL8046 - 1537 |
|---|---|
| Main Authors | , , |
| Format | Journal Article |
| Language | English |
| Published |
Tokyo
The Institute of Electronics, Information and Communication Engineers
01.12.2024
Japan Science and Technology Agency |
| Subjects | |
| Online Access | Get full text |
| ISSN | 0916-8532 1745-1361 |
| DOI | 10.1587/transinf.2024EDL8046 |
Cover
Loading…
| Abstract | With the rise of cyber threats, identifying APT groups becomes increasingly crucial for enterprise security experts. This paper introduces a comprehensive framework for profiling APT groups, focusing on Lazarus and APT29. It underscores the critical role of malware hash unit profiling in contemporary cyber security efforts, aiming to fortify organizational defenses against evolving APT threats. |
|---|---|
| AbstractList | With the rise of cyber threats, identifying APT groups becomes increasingly crucial for enterprise security experts. This paper introduces a comprehensive framework for profiling APT groups, focusing on Lazarus and APT29. It underscores the critical role of malware hash unit profiling in contemporary cyber security efforts, aiming to fortify organizational defenses against evolving APT threats. |
| ArticleNumber | 2024EDL8046 |
| Author | KIM, Chaeyoung PARK, Hoorin LEE, Sena |
| Author_xml | – sequence: 1 fullname: LEE, Sena organization: Department of Information Security, Seoul Women's University – sequence: 1 fullname: KIM, Chaeyoung organization: Department of Information Security, Seoul Women's University – sequence: 1 fullname: PARK, Hoorin organization: Department of Information Security, Seoul Women's University |
| BookMark | eNqFkN1PwjAUxRuDiYD-Bz4s8Xm4tus-jC8E-TAhcTHjubm0HRRHh-2m8b93BEHii0_33uT8zsk9PdQxlVEI3eJggFkS39cWjNOmGJCAhOOneRKE0QXq4jhkPqYR7qBukOLITxglV6jn3CYIcEIw66LHzIKotYDSG2a5N7VVs_Nm4Nbewujay2xV6FKblTexsFWflX3zFm5_53nmrtFlAaVTNz-zjxaTcT6a-fOX6fNoOPcFI7T2iZIAWEgZUlqIJcYqxRKDjBkIkEsAQlJGUhEVAFK1L0SUxERFjMaJlEzRPro7-O5s9d4oV_NN1VjTRnKKGWOEhDRtVeFBJWzlnFUF31m9BfvFccD3PfFjT_yspxZ7-IMJXUOtK9PKdfkf_HqAN66GlTolgm07LdUvBPJj1yx5cFzOTE5isQbLlaHfMs6R8w |
| CitedBy_id | crossref_primary_10_1007_s11227_025_07051_x |
| Cites_doi | 10.3390/app11167738 10.1109/ACCESS.2023.3344680 |
| ContentType | Journal Article |
| Copyright | 2024 The Institute of Electronics, Information and Communication Engineers Copyright Japan Science and Technology Agency 2024 |
| Copyright_xml | – notice: 2024 The Institute of Electronics, Information and Communication Engineers – notice: Copyright Japan Science and Technology Agency 2024 |
| DBID | AAYXX CITATION 7SC 8FD JQ2 L7M L~C L~D |
| DOI | 10.1587/transinf.2024EDL8046 |
| DatabaseName | CrossRef Computer and Information Systems Abstracts Technology Research Database ProQuest Computer Science Collection Advanced Technologies Database with Aerospace Computer and Information Systems Abstracts Academic Computer and Information Systems Abstracts Professional |
| DatabaseTitle | CrossRef Computer and Information Systems Abstracts Technology Research Database Computer and Information Systems Abstracts – Academic Advanced Technologies Database with Aerospace ProQuest Computer Science Collection Computer and Information Systems Abstracts Professional |
| DatabaseTitleList | Computer and Information Systems Abstracts |
| DeliveryMethod | fulltext_linktorsrc |
| Discipline | Engineering Computer Science |
| EISSN | 1745-1361 |
| EndPage | 1537 |
| ExternalDocumentID | 10_1587_transinf_2024EDL8046 article_transinf_advpub_0_advpub_2024EDL8046_article_char_en |
| GroupedDBID | -~X 1TH 5GY ABJNI ABZEH ACGFS ADNWM AENEX AFFNX ALMA_UNASSIGNED_HOLDINGS C1A CKLRP CS3 DU5 EBS EJD F5P H13 ICE JSF JSH KQ8 OK1 P2P RJT RYL RZJ TN5 VOH ZE2 ZKX ZY4 AAYXX CITATION 7SC 8FD JQ2 L7M L~C L~D |
| ID | FETCH-LOGICAL-c523t-2edaa1cdd433fcb11e91d1ad75acadbaa229529c6faade02463272e65378dd5e3 |
| ISSN | 0916-8532 |
| IngestDate | Mon Jun 30 13:16:02 EDT 2025 Tue Jul 01 02:54:10 EDT 2025 Thu Apr 24 23:10:43 EDT 2025 Wed Sep 03 06:30:30 EDT 2025 |
| IsDoiOpenAccess | true |
| IsOpenAccess | true |
| IsPeerReviewed | true |
| IsScholarly | true |
| Issue | 12 |
| Language | English |
| LinkModel | OpenURL |
| MergedId | FETCHMERGED-LOGICAL-c523t-2edaa1cdd433fcb11e91d1ad75acadbaa229529c6faade02463272e65378dd5e3 |
| Notes | ObjectType-Article-1 SourceType-Scholarly Journals-1 ObjectType-Feature-2 content type line 14 |
| OpenAccessLink | https://www.jstage.jst.go.jp/article/transinf/advpub/0/advpub_2024EDL8046/_article/-char/en |
| PQID | 3155522439 |
| PQPubID | 2048497 |
| PageCount | 5 |
| ParticipantIDs | proquest_journals_3155522439 crossref_primary_10_1587_transinf_2024EDL8046 crossref_citationtrail_10_1587_transinf_2024EDL8046 jstage_primary_article_transinf_advpub_0_advpub_2024EDL8046_article_char_en |
| ProviderPackageCode | CITATION AAYXX |
| PublicationCentury | 2000 |
| PublicationDate | 2024-12-01 |
| PublicationDateYYYYMMDD | 2024-12-01 |
| PublicationDate_xml | – month: 12 year: 2024 text: 2024-12-01 day: 01 |
| PublicationDecade | 2020 |
| PublicationPlace | Tokyo |
| PublicationPlace_xml | – name: Tokyo |
| PublicationTitle | IEICE Transactions on Information and Systems |
| PublicationTitleAlternate | IEICE Trans. Inf. & Syst. |
| PublicationYear | 2024 |
| Publisher | The Institute of Electronics, Information and Communication Engineers Japan Science and Technology Agency |
| Publisher_xml | – name: The Institute of Electronics, Information and Communication Engineers – name: Japan Science and Technology Agency |
| References | 1 2 3 4 5 6 7 8 9 10 |
| References_xml | – ident: 2 – ident: 5 – ident: 4 doi: 10.3390/app11167738 – ident: 1 – ident: 3 doi: 10.1109/ACCESS.2023.3344680 – ident: 6 – ident: 9 – ident: 7 – ident: 8 – ident: 10 |
| SSID | ssj0018215 |
| Score | 2.3712296 |
| Snippet | With the rise of cyber threats, identifying APT groups becomes increasingly crucial for enterprise security experts. This paper introduces a comprehensive... |
| SourceID | proquest crossref jstage |
| SourceType | Aggregation Database Enrichment Source Index Database Publisher |
| StartPage | 2024EDL8046 |
| SubjectTerms | APT Group Profiling APT29 Cyber Threat Intelligence Cybersecurity Lazarus |
| Title | Practical APT Group Hash Unit Profiling Framework Using TTPs |
| URI | https://www.jstage.jst.go.jp/article/transinf/advpub/0/advpub_2024EDL8046/_article/-char/en https://www.proquest.com/docview/3155522439 |
| Volume | E107.D |
| hasFullText | 1 |
| inHoldings | 1 |
| isFullTextHit | |
| isPrint | |
| ispartofPNX | IEICE Transactions on Information and Systems, 2024, pp.2024EDL8046 |
| link | http://utb.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwnV3NbxQhFCdaPeihatW4Wg0Hb4Z1B5ivpJemnc2ua03VadLbhAGmaszWuKNJ-9f7YIBF3aj1MpkhDAHej8d78D4Qei6KQoG2o0gBwj3hZZGRNleSsFIo0aUqTbU5hzx6k81O-KvT9HR9XWC9S_p2LC83-pX8D1WhDOhqvGSvQNnQKBTAO9AXnkBheP4TjYdgQ3aWj2t3rjQTqw9WkjQ-AN1H620-9RZYLwYLgbo-XsVS6byaH1QmW4RPHW7vEFxM1d4bLK-i4ObGhKeyhpTv9TJw9sX8yF3h6wvDRQLf3X-3sHvcuTH3iw8aKI-MNtyJYZIR2N0H5qkHfpnzlCRsiKfuGWoFKuX4MAYPjVikETCj7RY-842sPDWHIVM7dCgfmx5Vh6-LCd8QOfuXHS3YGRoNB9ppfCtN1Mp1dIOCamHSfSzerm-eCjpkvfCDde6W0MrLTX35SZy5-Qkk-rPft3Urq9R30bZTMvD-gJh76Jpe7qA7PoEHdvx8B92OolHeR3sBThjghC2csIETNnDCAU44wAlbOGEDpwfoZFrVBzPikmsQmVLWE6qVEIlUijPWyTZJdJmoRKg8FVKoVgiT552WMuuEUBoGnDGaU50BuQqlUs0eoq3l-VI_QriYKMkVqM4dbzmIoKXKdVZwrSXruKRyhJifo0a6yPMmAcrn5k_0GSES_voyRF75S_3FMP2htluX69pCfQcm10z8S_R3qGycHYG3jNCup2HjVvyqYSB8g74CMvzjK3buCbq1XlK7aKv_-k0_BWm2b59Z-P0A6BKhCA |
| linkProvider | Colorado Alliance of Research Libraries |
| openUrl | ctx_ver=Z39.88-2004&ctx_enc=info%3Aofi%2Fenc%3AUTF-8&rfr_id=info%3Asid%2Fsummon.serialssolutions.com&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Ajournal&rft.genre=article&rft.atitle=Practical+APT+Group+Hash+Unit+Profiling+Framework+Using+TTPs&rft.jtitle=IEICE+transactions+on+information+and+systems&rft.au=LEE%2C+Sena&rft.au=KIM%2C+Chaeyoung&rft.au=PARK%2C+Hoorin&rft.date=2024-12-01&rft.issn=0916-8532&rft.eissn=1745-1361&rft.volume=E107.D&rft.issue=12&rft.spage=1533&rft.epage=1537&rft_id=info:doi/10.1587%2Ftransinf.2024EDL8046&rft.externalDBID=n%2Fa&rft.externalDocID=10_1587_transinf_2024EDL8046 |
| thumbnail_l | http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=/lc.gif&issn=0916-8532&client=summon |
| thumbnail_m | http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=/mc.gif&issn=0916-8532&client=summon |
| thumbnail_s | http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=/sc.gif&issn=0916-8532&client=summon |