Rewterz Threat Advisory – CVE-2022-30190: Follina Vulnerability (MSDT) – Active IOCs
August 21, 2022Rewterz Threat Alert – APT32 Ocean Lotus – Active IOCs
August 21, 2022Rewterz Threat Advisory – CVE-2022-30190: Follina Vulnerability (MSDT) – Active IOCs
August 21, 2022Rewterz Threat Alert – APT32 Ocean Lotus – Active IOCs
August 21, 2022Severity
High
Analysis Summary
Vtflooder is a trojan infection that can infiltrate your system without your awareness and remain undetected for a long time, despite the suspicious indicators once it settles and activates. After infecting computers, it uses the network connection to upload its payload to an online threat scanning service, most likely to degrade the service’s speed or stability. This malicious program can infect your computer along with other malware infections and possibly unwanted programs. Vtflooder can collect and steal sensitive data from your computer and create backdoors for further cyber attacks by downloading malicious threats in the devices.
Impact
- Credential Theft
- Financial Loss
- Exposure of Sensitive Data
Indicators of Compromise
MD5
- 03ba5f15cba5ab4fd076ea2e78b5f521
SHA-256
- 01283b1e9fd2d81741acf263fa3a8774a5361c333589ff2f5aed9b44625010cc
SHA-1
- d1f421fad68a4e3e805f41c3a979a9886b76e88f
Remediation
- Block all threat indicators at your respective controls.
- Search for IOCs in your environment.