Rewterz Threat Alert – FormBook Malware – Active IOCs
November 18, 2021Rewterz Threat Alert – SNAKE Ransomware – Active IOCs
November 18, 2021Rewterz Threat Alert – FormBook Malware – Active IOCs
November 18, 2021Rewterz Threat Alert – SNAKE Ransomware – Active IOCs
November 18, 2021Severity
Medium
Analysis Summary
Cryptbot is delivered as a Trojan malware. The Cryptbot Trojan Malware hides within legitimate software in order to be installed by its victims. Some malicious websites and many of them appear on the top pages such as cracks and serials of popular commercial software are entered in search engines, many victims have downloaded this malware and execute on their systems.
Impact
- Credential Theft
- Information Theft
- Expose of Sensitive Data
Indicators of Compromise
MD5
- f80e9037da46b09888ea58f92a548f2a
- 832913894db80d89b7b5e3c667f43c37
SHA-256
- c6365451eaacc3d80259537e3299865c9ac32053688b059581e6a1bec5023209
- d8977d0556a06d3e51f1a00c9d463b2aff124d087186b5a65d2fd7f63a03e51c
SHA-1
- 6f800d660b89d0ef8e33cfe2631d7f40d2b7d37a
- b663427488a27b4a8a128d92b647227826848228
Remediation
- Block all threat indicators at your respective controls.
- Search for IOCs in your environment.