Rewterz Threat Alert – NJRAT – Active IOCs
June 3, 2022Rewterz Threat Alert – FormBook Malware – Active IOCs
June 3, 2022Rewterz Threat Alert – NJRAT – Active IOCs
June 3, 2022Rewterz Threat Alert – FormBook Malware – Active IOCs
June 3, 2022Severity
Medium
Analysis Summary
The Ramnit malware has numerous variants, which may individually be categorized as trojans, viruses, or worms. The first ramnit malware discovered in 2010 were viruses that infected exe, .dll , and html files found on a computer. Later variants included the ability to steal confidential data from the infected machine. Depending on the variants, Ramnit-infected machines can also be enslaved in a botnet.
Impact
- Information Theft
- Exposure of Sensitive Data
- Credential Theft
Indicators of Compromise
MD5
- 6877fa33d3b3768d3924b6abca79de04
SHA-256
- 66dec9a90a8dbc4f88533c5d5127cc5342503e4beda22443088f5d0f53710e6c
SHA-1
- 25da2e745079756e14e9c83421b10efa3e0cc6d8
Remediation
- Block the threat indicators at their respective controls.
- Search for IOCs in your environment.