A North Korea-linked hacking group is likely behind an infected version of a popular software analysis tool, a cybersecurity research group has found, in the second DPRK attack against cybersecurity professionals uncovered this year.

Slovakia-based ESET Research Labs (ESET) announced on Wednesday that it has discovered an infected installer for IDA Pro 7.5, a tool that allows researchers to translate binary computer code — especially from malware — into assembly language, a form more readily-intelligible to humans.

In a tweet, ESET stated that “based on the domain and trojanized application, we attribute this malware to known Lazarus [Group