Rewterz Threat Alert – Raccoon Infostealer – Active IOCs

June 4, 2021

Rewterz Threat Advisory – Multiple Tenable Log Correlation Engine Vulnerabilities

June 4, 2021

Rewterz Threat Alert – APT 32 Ocean Lotus – IOCs

June 4, 2021

Severity

High

Analysis Summary

Cyber espionage actors, aka APT32 (OceanLotus Group), are carrying out intrusions into private sector companies across multiple industries and have also targeted foreign governments, dissidents, and journalists. APT32 leverages a unique suite of fully-featured malware, in conjunction with commercially available tools, to conduct targeted operations that are aligned with Vietnamese state interests.

Impact

Information theft and espionage

Indicators of Compromise

MD5

1242ae39377b855f10fee9d61188dba9

SHA-256

0749ca7341ae2e490190c4c5412404a48206fcc35735566ac77d93d073c63eab

SHA1

db1337d5a2032ad5fdb78ad4ea416949b8faf622

Remediation

Block all threat indicators at their respective controls.
Look for IOCs in your environment.

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Hackers Actively Exploit Critical Vulnerabilities in Exchange and SharePoint Servers

Mirai Botnet aka Katana – Active IOCs

GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Alert – Raccoon Infostealer – Active IOCs

Rewterz Threat Advisory – Multiple Tenable Log Correlation Engine Vulnerabilities

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.