ScarCruft (aka APT37 or Temp.Reaper) has been using spyware dubbed Chinotto to target victims for espionage purposes. The North Korea-linked group is deploying the Chinotto spyware backdoor against dissidents, journalists and other politically relevant individuals in South Korea. Kaspersky discovered the malware while conducting a forensic investigation on one victim that runs a business related to North Korea. The malware is triple-pronged, with the ultimate double the goal of surveilling victims across mobile and desktop.”]
Source: https://threatpost.com/scarcruft-apt-desktop-mobile-attacks/176620/