Rewterz Threat Alert – Hive Ransomware – Active IOCs

August 26, 2021

Rewterz Threat Alert – Kimsuky APT Group – Active IOCs

August 26, 2021

Rewterz Threat Alert – APT32 Ocean Lotus – Active IOCs

August 26, 2021

Severity

High

Analysis Summary

Cyber espionage actors, aka APT32 (OceanLotus Group), are carrying out intrusions into private sector companies across multiple industries and have also targeted foreign governments, dissidents, and journalists. APT32 leverages a unique suite of fully-featured malware, in conjunction with commercially available tools, to conduct targeted operations that are aligned with Vietnamese state interests.

Impact

Information Theft and Espionage

Indicators of Compromise

MD5

0bd0f1dd8b03c11b3d59da2c5fba2e45
cc4a9d5248095e64c1f22e8a439416cc

SHA-256

b70b431e5e961e8d8d27887596cc1c53a420292832f7f354979eda3ad80382df
7eaf61e7e974d02110133ca2c9f410fc18580aefa525523845a9326141734ea1

SHA-1

32b705351c75c8fd87068530a851e735bce5cb22
98ee9e79b7ca736f515245d5c39f49b2518f60fc

Remediation

Block all the threat indicators in their respective controls.
Search for IOC in your environment.

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs

North Korean APT Kimsuky aka Black Banshee – Active IOCs

Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Alert – Hive Ransomware – Active IOCs

Rewterz Threat Alert – Kimsuky APT Group – Active IOCs

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.