Rewterz Threat Alert – COVID-19 Phishing Email Indicators

Severity

Medium

Analysis Summary

Impact

• Credential theft
• Exposure  of sensitive data 

Indicators of Compromise

Filename

• AWARENESS NOTICE ON CORONAVIRUS COVID-19 DOCUMENT_zip[.]jar
• Covid-19_zip[.]bin
• COVID-19[.]rar
• Attachments-Fwd_ Proforma for COVID-19[.]zip
• COVID-19 WHO RECOMENDED V[.]gz
• Covid 19 Immunity Tips (2)[.]zip
• zbetcheckin_tracker_COVID-19[.]jar

MD5

• bac2f22d53c6f2b43eba6adbb0f2ea9a
• 08dd5ee67ee69ddfa11cb55562baef58
• c49856a3df308e8b1739b357832c8e9b
• 5da446b5f22bfa77a51b654762583a28
• 378bbb172ccae5e28549a003e4e84bce
• 51b7f0213cb2945d42b88996761ce74b
• e8973e617a743a5597b63ce268986761

SHA-256

f7b0d6d95f2644e32c22eb3e681e33387ac27d71dd73eee3ff37ce77985ab177

3e1fb4ff54112a78d8bdccbe596c119201f079010c4f69cdf2c99385e7aee3dc

15e029c3834435150c76741e714540fcb799662db8cc2c61ba4ef192a781727b

47f1570e770d236836c0d3cb50755b6dd91e1be58a0d3e61507c7baacfd27784

43670ae43df9e361fa15f09f611da32db104ee207ed5af3e7e7f098ad82a68e0

2c464648ff97fd39dab054d0c3e1bd249e244fcc975b697e312796669c7763f1

5b0ba8d58a64630cb5fcb80e72520bd2ef6f322003fa2588d4d594620e6685ae

Remediation

• Block all threat indicators at your respective controls.
• Always be suspicious about emails sent by unknown senders.
• Never click on the links/attachments sent by unknown senders.