Rewterz Threat Alert – Raccoon Infostealer – Active IOCs
August 22, 2022Rewterz Threat Advisory – CVE-2022-2330 – McAfee Data Loss Prevention (DLP) Endpoint for Windows Vulnerability
August 23, 2022Rewterz Threat Alert – Raccoon Infostealer – Active IOCs
August 22, 2022Rewterz Threat Advisory – CVE-2022-2330 – McAfee Data Loss Prevention (DLP) Endpoint for Windows Vulnerability
August 23, 2022Severity
Medium
Analysis Summary
The Ramnit malware has numerous variants, which may individually be categorized as trojans, viruses, or worms. The first ramnit malware discovered in 2010 were viruses that infected exe, .dll , and html files found on a computer. Later variants included the ability to steal confidential data from the infected machine. Depending on the variants, Ramnit-infected machines can also be enslaved in a botnet.
Impact
- Information Theft
- Exposure of Sensitive Data
- Credential Theft
Indicators of Compromise
MD5
- 6c7f2be9a27c586cda801c1dc21b8593
SHA-256
- dbe91cfa922fa45559c73e5b1f4adba255901462cb67731ccee85ff9a250e19d
SHA-1
- a1240fbc50077aab1f6eb76a5fa5b309a88a8cf5
Remediation
- Block the threat indicators at their respective controls.
- Search for IOCs in your environment.