Rewterz penetration testing services help organizations determine if a cyber attacker can gain access to their critical assets while giving them detailed insights of the overall business impact of a cyber attack.
Before Rewterz got its start, the market was in dire need of a specialized and dedicated information security company. It was nearly impossible for businesses to find a trustworthy provider that could truly cover all of their bases. We wanted to meet this need, giving companies across the globe a chance to get ahead while knowing that their data is in good hands.
Rewterz penetration testing services help organizations determine if a cyber attacker can gain access to their critical assets while giving them detailed insights of the overall business impact of a cyber attack.
Before Rewterz got its start, the market was in dire need of a specialized and dedicated information security company. It was nearly impossible for businesses to find a trustworthy provider that could truly cover all of their bases. We wanted to meet this need, giving companies across the globe a chance to get ahead while knowing that their data is in good hands.
Severity
High
Analysis Summary
Muddy water a very capable APT group active since 2017 is now active again recently and has been targeting various organizations. Threat indicators are provided.
Indicators of Compromise
IP(s) / Hostname(s)
googleads[.]hopto[.]org
URLs
http[:]//googleads[.]hopto[.]org/data/f06a3389ae431520[.]dat
http[:]//infosystema[.]kg/public/images/file_library/2-Merve_Cooperation_CV[.]doc
http[:]//orbe-fzc[.]com/
http[:]//orbe-fzc[.]com//list[.]doc
http[:]//orbe-fzc[.]com/Government-Form[.]doc
http[:]//orbe-fzc[.]com/letter-for-Kazakhstan[.]doc
http[:]//orbe-fzc[.]com/list[.]doc
orbe-fzc[.]com
Malware Hash (MD5/SHA1/SH256)
Remediation
Block the threat indicators at their respective controls.