Rewterz Threat Alert – Kimsuky APT Group – Active IOCs
July 26, 2022Rewterz Threat Alert – Amadey Botnet – Active IOCs
July 26, 2022Rewterz Threat Alert – Kimsuky APT Group – Active IOCs
July 26, 2022Rewterz Threat Alert – Amadey Botnet – Active IOCs
July 26, 2022Severity
Medium
Analysis Summary
The Ramnit malware has numerous variants, which may individually be categorized as trojans, viruses, or worms. The first ramnit malware discovered in 2010 were viruses that infected exe, .dll , and html files found on a computer. Later variants included the ability to steal confidential data from the infected machine. Depending on the variants, Ramnit-infected machines can also be enslaved in a botnet.
Impact
- Information Theft
- Exposure of Sensitive Data
- Credential Theft
Indicators of Compromise
MD5
- 24a62aadac04a91992dab67833312e35
SHA-256
- 8bb0503d5836c85ef107f532e46fe4f90245984d0f634ce9de044ba39443f575
SHA-1
- e0379d4a9cd568690f5bf858deb4484f49a77232
Remediation
- Block the threat indicators at their respective controls.
- Search for IOCs in your environment.