Rewterz Threat Advisory – CVE-2022-30190: Follina Vulnerability (MSDT) – Active IOCs
August 22, 2022Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs
August 22, 2022Rewterz Threat Advisory – CVE-2022-30190: Follina Vulnerability (MSDT) – Active IOCs
August 22, 2022Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs
August 22, 2022Severity
High
Analysis Summary
A new Mirai variant is making the rounds called mirai_pteamirai. This botnet is one of the significant botnets targeting exposed networking devices running Linux. Mirai means ‘future’ in Japanese. This botnet is one of the active botnet and used to cause DDoS conditions. IP cameras, home routers, and other IoT devices are the common targets of this botnet.
Impact
- Server Outage
- Data Loss
- Website Downtime
Indicators of Compromise
MD5
- 2cade599578db6e77f69241bbb4b2cc5
- 6b3826eca8bb82fbb2a4b566eb277882
- c06923305732ff65cba694012b580c2f
- 757dc89e6b6a27e248b5b74c9667755c
SHA-256
- 4d682cef0cb0195c17d1b81c857c4399e9d58cfa699fb902714f97bc5bd215b6
- 96413d99ec678e265b938187d4556b022a0d932c56026af151bdf0babb4339af
- daf6aff6483a685ac4532c20af3a293b0bd352d48ee201c4164ec1cc266f36f9
- 59a72d60d8d15e13cb9eef8f02d9a4f262677a10c94fba4c286da2478de27fb6
SHA-1
- dee88dcb47a54418a2a34a783734b0ad91a7c544
- d15f48897377a5007cd33e5d8e160c24481f8006
- d1cb758586923638c2a769e720a20bd5abd83ccc
- 73b67324b38f883181b6361a93d1531b15d23970
Remediation
- Upgrade your operating system.
- Don’t open files and links from unknown sources.
- Install and run anti-virus scans.