Intel Name: Ottercookie, a new malware used by contagious interview
Date of Scan: January 1, 2025
Impact: Medium
Summary: OtterCookie, a new malware used by Contagious Interview, is part of an ongoing attack campaign attributed to North Korea, which has been financially motivated rather than politically targeted. Observed by SOCs since November 2024, OtterCookie represents a new variant in the Contagious Interview campaign, which previously featured malware like BeaverTail and InvisibleFerret. The malware exhibits unique execution flows and behavior, which have been under investigation. Japanese organizations, among others, are advised to remain cautious as incidents linked to this campaign continue to emerge.