New Malware by Lazarus-Backed Andariel Group Exploits Log4j

APT group associated with North Korea-backed Lazarus Group is utilizing malware named EarlyRat, discovered by Kaspersky researchers. The malware functions by exploiting the Log4j vulnerability and via phishing attacks. It is primarily used to execute commands and collect system data. EarlyRat’s discovery highlights Lazarus Group’s ability to rapidly develop fresh malware, and stopping Lazarus-aligned groups is now a priority for the US federal government.