March 11, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Alert – Latest Ursnif IOCs
November 24, 2020Rewterz Threat Alert – (TA416) Using Golang PlugX Malware Loader
November 25, 2020Rewterz Threat Alert – Latest Ursnif IOCs
November 24, 2020Rewterz Threat Alert – (TA416) Using Golang PlugX Malware Loader
November 25, 2020
Severity
High
Analysis Summary
Hardcore Nationalist (HN2) aka Sidewinder APT Group, which has been working in the interest of Indian Government, was observed targeting Pakistani Government Officials through decoy documents of NDC meeting. Hardcore Nationalist aka SideWinder is a threat group active since 2012 according to Kaspersky. This group mainly targets Pakistanis and Chinese military & government entities windows machines as well as mobile phones often using weaponized word documents & custom build mobile apps for information theft & espionage.
Impact
- Information theft
- Exposure of sensitive data
Indicators of Compromise
MD5
- e24e51ec170b2341ef90321640fef797
SHA-256
- 7238f4e5edbe0e5a2242d8780fb58c47e7d32bf2c4f860c88c511c30675d0857
SHA1
- d6066b94968ba76864f930eda55267549eae7f9c
Remediation
- Block all threat indicators at your respective controls.
- Search for your IOCs in your environment.