← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Government Sector Cyber Threat Intel - Key Insights (March 2022)
WHITE Informational SVThreatIntel 2022-04-07 Modified: 2022-05-07
129
IOCs
HIGH VOLUME
In March, a Transparent Tribe campaign was found targeting the Indian government and military entities. The attacker was infecting victims with CrimsonRAT along with new stagers and implants. Further, the attackers created fake domains mimicking legitimate military and defense organizations. Other Major Incidents Cybercriminals identified as Curious Gorge, Ghostwriter APT, and COLDRIVER were targeting NATO and Eastern European countries by launching phishing and malware attacks. Mustang Panda, UNC1151, and SCARAB were using war-related themes to target mostly Ukraine in a spear-phishing campaign. Hong Kong’s electoral office apologized after an employee failed to follow guidelines and sent the personal details of voters to a random email address.
dem0penadomainsdownloaderswhatsoevers3rnavy filenamesha256spear phishingcampaign rtfmshtmlpowershellcrimsonratGovernment Sector
Indicators of Compromise (43 / 129 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain hostname
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA256 c7dd490adb297b7f529950778b5a426e8068ea2df58be5d8fd49fe55b5331e28 2022-04-07
FileHash-SHA256 011bcca8feebaed8a2aa0297051dfd59595c4c4e1ee001b11d8fc3d97395cc5c 2022-04-07
FileHash-SHA256 08603759173157c2e563973890da60ab5dd758a02480477e5286fccef72ef1a2 2022-04-07
FileHash-SHA256 0d3f5ca81f62b8a68647a4bcc1c5777d3e865168ebb365cab4b452766efc5633 2022-04-07
FileHash-SHA256 124023c0cf0524a73dabd6e5bb3f7d61d42dfd3867d699c59770846aae1231ce 2022-04-07
FileHash-SHA256 15b90d869b4bcc3cc4b886abbf61134e408088fdfbf48e9ab5598a4c80f6f4d8 2022-04-07
FileHash-SHA256 1ba7cf0050343faf845553556b5516d96c7c79f9f39899839c1ca9149cf2d838 2022-04-07
FileHash-SHA256 2043e8b280ae016a983ecaea8e2d368f27a31fd90076cdca9cef163d685e1c83 2022-04-07
FileHash-SHA256 2b32aa56da0f309a6cd5d8cd8b3e125cb1b445b6400c3b22cf42969748557228 2022-04-07
FileHash-SHA256 2bb2a640376a52b1dc9c2b7560a027f07829ae9c5398506dc506063a3e334c3a 2022-04-07
FileHash-SHA256 2ca028a2d7ae7ea0c55a1eeccd08a9386f595c66b7a0c6099c0e0d7c0ad8b6b8 2022-04-07
FileHash-SHA256 38f2b578a9da463f555614e9ca9036337dad0af4e03d89faf09b4227f035db20 2022-04-07
FileHash-SHA256 4162eaeb5826f3f337859996fc7f22442dd9b47f8d4c7cf4f942f666b1016661 2022-04-07
FileHash-SHA256 4d14df9d5fa637dae03b08dda8fe6de909326d2a1d57221d73ab3938dfe69498 2022-04-07
FileHash-SHA256 4e1304f4589a706c60f1f367d804afecd3e08b08b7d5e6bd8c93384f0917385c 2022-04-07
FileHash-SHA256 56f04a39103372acc0f5e9b01236059ab62ea3d5f8236280c112e473672332b1 2022-04-07
FileHash-SHA256 5911f5bd310e943774a0ca7ceb308d4e03c33829bcc02a5e7bdedfeb8c18f515 2022-04-07
FileHash-SHA256 5c341d34827c361ba2034cb03dea665a873016574f3b4ff9d208a9760f61b552 2022-04-07
FileHash-SHA256 5e645eb1a828cef61f70ecbd651dba5433e250b4724e1408702ac13d2b6ab836 2022-04-07
FileHash-SHA256 67ad0b41255eca1bba7b0dc6c7bd5bd1d5d74640f65d7a290a8d18fba1372918 2022-04-07
FileHash-SHA256 84841490ea2b637494257e9fe23922e5f827190ae3e4c32134cadb81319ebc34 2022-04-07
FileHash-SHA256 85fa43c3f84b31fbe34bf078af5a614612d32282d7b14523610a13944aadaacb 2022-04-07
FileHash-SHA256 892a753f31dadf1c6e75f1b72ccef58d29454b9f4d28d73cf7e20d137ce6dd8d 2022-04-07
FileHash-SHA256 99e6e510722068031777c6470d06e31e020451aa86b3db995755d1af49cc5f9e 2022-04-07
FileHash-SHA256 9d4640bde3daf44cc4258eb5f294ca478306aa5268c7d314fc5019cf783041f0 2022-04-07
FileHash-SHA256 9d4e6da67d1b54178343e6607aa459fd4d711ce372de00a00ae5d81d12aa44be 2022-04-07
FileHash-SHA256 a0964a46212d50dbbbbd516a8a75c4764e33842e8764d420abe085d0552b5822 2022-04-07
FileHash-SHA256 a0f6963845d7aeae328048da66059059fdbcb6cc30712fd10a34018caf0bd28a 2022-04-07
FileHash-SHA256 aadaa8d23cc2e49f9f3624038566c3ebb38f5d955b031d47b79dcfc94864ce40 2022-04-07
FileHash-SHA256 adaf7b3a432438a04d09c718ffddc0a083a459686fd08f3955014e6cf3abeec1 2022-04-07
FileHash-SHA256 adc8e40ecb2833fd39d856aa8d05669ac4815b02acd1861f2693de5400e34f72 2022-04-07
FileHash-SHA256 b0ecab678b02fa93cf07cef6e2714698d38329931e5d6598b98ce6ee4468c7df 2022-04-07
FileHash-SHA256 b19af42ff8cf0f68e520a88f40ffd76f53a27dffa33b313fe22192813d383e1e 2022-04-07
FileHash-SHA256 b3bc8f9353558b7a07293e13dddb104ed6c3f9e5e9ce2d4b7fd8f47b0e3cc3a5 2022-04-07
FileHash-SHA256 b9fea0edde271f3bf31135bdf1a36e58570b20ef4661f1ab19858a870f4119ba 2022-04-07
FileHash-SHA256 c828bccfc34f16983f624f00d45e54335804b77dd199139b80841ad63b42c1f3 2022-04-07
FileHash-SHA256 d2113b820db894f08c47aa905b6f643b1e6f38cce7adf7bf7b14d8308c3eaf6e 2022-04-07
FileHash-SHA256 d4eaf26969848d8027df7c8c638754f55437c0937fbf97d0d24cd20dd92ca66d 2022-04-07
FileHash-SHA256 d9037f637566d20416c37bad76416328920997f22ffec9340610f2ea871522d8 2022-04-07
FileHash-SHA256 dc1a5e76f486268ca8b7f646505e73541e1dc8578a95593f198f93c9cd8a5c8d 2022-04-07
FileHash-SHA256 dd23162785ed4e42fc1abed4addcab2219f45c802cccd35b2329606d81f2db71 2022-04-07
FileHash-SHA256 e3e9bbdaa4be7ad758b0716ee11ec67bf20646bce620a86c1f223fd2c8d43744 2022-04-07
FileHash-SHA256 f66c2e249931b4dfab9b79beb69b84b5c7c4a4e885da458bc10759c11a97108f 2022-04-07