Rewterz Threat Alert – FormBook Malware – Active IOCs
June 13, 2022Rewterz Threat Alert – MuddyWater APT – Active IOCs
June 13, 2022Rewterz Threat Alert – FormBook Malware – Active IOCs
June 13, 2022Rewterz Threat Alert – MuddyWater APT – Active IOCs
June 13, 2022Severity
High
Analysis Summary
Xpert RAT is a remote administration Trojan and a malicious program (RAT). RATs are often used to remotely access and manipulate computers. These programs can be used for lawful purposes by system administrators to get access to client systems, but they can also be used for malicious purposes.The malware gets downloaded into the victim’s machine after the victim clicks on it. Crooks frequently use PDF, Word, and IMG files as shared files for their malware payloads.
Impact
- Sensitive Data Exposure
- Information Theft
- Keylogging
Indicators of Compromise
MD5
- 1402bc75caa465e3c69c302a7390a8e7
- 7236e64dc6eb9e21ae4c16239820713f
SHA-256
- 25a80f4addf74c82d8ae815164c44dcd530fd59fc278f306552d35d5140b880b
- 4c57fb95b67660646d6e37a04eb78e010c6a629e1fd8590aaeb4093dea0fad1f
SHA-1
- df94f132f82c48cdda43a1121266320a1520ffdc
- f97cc4ecc429d57d44674511d518f9e6b428e7b3
Remediation
- Block all threat indicators at your respective controls.
- Search for IOCs in your environment.