Rewterz Annual Threat Intelligence Report 2025 - Download Now

Request a Demo
Rewterz
Rewterz Threat Alert – REvil Ransomware Linux version –Active IOCs
June 29, 2021
Rewterz
Rewterz Threat Advisory – Multiple Apple iOS and iPadOS Vulnerabilities
June 29, 2021

Rewterz Threat Alert – APT32 Ocean Lotus – Active IOCs

Severity

High

Analysis Summary

Cyber espionage actors, aka APT32 (OceanLotus Group), are carrying out intrusions into private sector companies across multiple industries and have also targeted foreign governments, dissidents, and journalists. APT32 leverages a unique suite of fully-featured malware, in conjunction with commercially available tools, to conduct targeted operations that are aligned with Vietnamese state interests.

Advanced Persistent Threat Groups (APT Groups) | FireEye

Impact

  • Information theft and espionage

Indicators of Compromise

MD5

  • 9602d1e23d8f32f31f475beb057da271
  • 3273dde8b51915160ababbe6092bfce2
  • fc164ff402e76ec692c38fa568d4e7bd
  • e785b68a4a0502f3abeeba137db8f9cd

SHA-256

  • 8b1b20dc5f0b9fda45aa888cd3c298a52d5a923d84e5fcddc6e64d3f042f9a67
  • 8f031098e3722d2662203fafc57bafc927a6deb7424982102f45a1da6964806b
  • 4991093dbb8e839785abff95058b1e577c75160b9576a68e4ed84337eeed9335
  • e2fba9178320650553a41a2494ed2607d1923eef38f7e9d01a82ebac0865caf3

SHA1

  • 274efe297fd708fcb5a6d086eb045e316f91ccbe
  • 1495285a07f9e55c04efc5c380b5ab201ac94f7c
  • a9c88aa6d725fef2aea04e40becffa926ac6a6fa
  • 440460e49af5d3bfa55bf781d72d4de12f128e0a

Remediation

  • Block all threat indicators at your respective controls.
  • Search for IOCs in your environment.