March 12, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory –Multiple IBM WebSphere Application Server Vulnerabilities
July 15, 2022Rewterz Threat Alert – AZORult Malware – Active IOCs
July 16, 2022Rewterz Threat Advisory –Multiple IBM WebSphere Application Server Vulnerabilities
July 15, 2022Rewterz Threat Alert – AZORult Malware – Active IOCs
July 16, 2022
Severity
Medium
Analysis Summary
The Ramnit malware has numerous variants, which may individually be categorized as trojans, viruses, or worms. The first ramnit malware discovered in 2010 were viruses that infected exe, .dll , and html files found on a computer. Later variants included the ability to steal confidential data from the infected machine. Depending on the variants, Ramnit-infected machines can also be enslaved in a botnet.
Impact
- Information Theft
- Exposure of Sensitive Data
- Credential Theft
Indicators of Compromise
MD5
- 5ed9b9183a5ef0bde98cff3ef7bf33cb
SHA-256
- 1385904fa7134a709dfe375166270a4058b6eaa9115a2c2a63b1ddb7068301da
SHA-1
- cade1fe4dc38ab2e959c7061e5ef04e2cfb665c9
Remediation
- Block the threat indicators at their respective controls.
- Search for IOCs in your environment.