Rewterz Threat Alert – REvil Ransomware Linux version –Active IOCs
June 29, 2021Rewterz Threat Advisory – Multiple Apple iOS and iPadOS Vulnerabilities
June 29, 2021Rewterz Threat Alert – REvil Ransomware Linux version –Active IOCs
June 29, 2021Rewterz Threat Advisory – Multiple Apple iOS and iPadOS Vulnerabilities
June 29, 2021Severity
High
Analysis Summary
Cyber espionage actors, aka APT32 (OceanLotus Group), are carrying out intrusions into private sector companies across multiple industries and have also targeted foreign governments, dissidents, and journalists. APT32 leverages a unique suite of fully-featured malware, in conjunction with commercially available tools, to conduct targeted operations that are aligned with Vietnamese state interests.
Impact
- Information theft and espionage
Indicators of Compromise
MD5
- 9602d1e23d8f32f31f475beb057da271
- 3273dde8b51915160ababbe6092bfce2
- fc164ff402e76ec692c38fa568d4e7bd
- e785b68a4a0502f3abeeba137db8f9cd
SHA-256
- 8b1b20dc5f0b9fda45aa888cd3c298a52d5a923d84e5fcddc6e64d3f042f9a67
- 8f031098e3722d2662203fafc57bafc927a6deb7424982102f45a1da6964806b
- 4991093dbb8e839785abff95058b1e577c75160b9576a68e4ed84337eeed9335
- e2fba9178320650553a41a2494ed2607d1923eef38f7e9d01a82ebac0865caf3
SHA1
- 274efe297fd708fcb5a6d086eb045e316f91ccbe
- 1495285a07f9e55c04efc5c380b5ab201ac94f7c
- a9c88aa6d725fef2aea04e40becffa926ac6a6fa
- 440460e49af5d3bfa55bf781d72d4de12f128e0a
Remediation
- Block all threat indicators at your respective controls.
- Search for IOCs in your environment.