← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Bitter APT continues to target Bangladesh
WHITE Bitter AlienVault 2022-07-06 Modified: 2022-08-05
40
IOCs
MEDIUM VOLUME
The SECUINFRA Falcon Team analysed a recent attack conducted by an advanced persistent threat group, known as Bitter, which is targeting military organisations from Bangladesh, as well as Chinese and Saudi Arabian organizations.
bitteraptcve20180798zxxzmuuydownloaderalmond rat
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Almond ZxxZ MuuyDownloader
Indicators of Compromise (11 / 40 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 CVE URL YARA domain hostname
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA256 3fdf291e39e93305ebc9df19ba480ebd60845053b0b606a620bf482d0f09f4d3 2022-07-06
FileHash-SHA256 fa0ed2faa3da831976fee90860ac39d50484b20bee692ce7f0ec35a15670fa92 2022-07-06
FileHash-SHA256 0c7158f9fc2093caf5ea1e34d8b8fffce0780ffd25191fac9c9b52c3208bc450 2022-07-06
FileHash-SHA256 3992d5a725126952f61b27d43bd4e03afa5fa4a694dca7cf8bbf555448795cd6 2022-07-06
FileHash-SHA256 55901c2d5489d6ac5a0671971d29a31f4cdfa2e03d56e18c1585d78547a26396 SHA256 of bcc9e35c28430264575831e851182eca7219116f 2022-07-06
FileHash-SHA256 69b397400043ec7036e23c225d8d562fdcd3be887f0d076b93f6fcaae8f3dd61 2022-07-06
FileHash-SHA256 90fd32f8f7b494331ab1429712b1735c3d864c8c8a2461a5ab67b05023821787 2022-07-06
FileHash-SHA256 91ddbe011f1129c186849cd4c84cf7848f20f74bf512362b3283d1ad93be3e42 SHA256 of c330ef43bbee001296c6c120cf68e4c90d078d9c 2022-07-06
FileHash-SHA256 bc03923e3cc2895893571068fd20dd0bc626764d06a009b91dac27982e40a085 SHA256 of 358867f105b517624806c3315c5426803f7c42a7 2022-07-06
FileHash-SHA256 bd0d25194634b2c74188cfa3be6668590e564e6fe26a6fe3335f95cbc943ce1d 2022-07-06
FileHash-SHA256 d83cb82be250604b2089a1198cedd553aaa5e8838b82011d6999bc6431935691 2022-07-06
References (1)
↗ https://www.secuinfra.com/en/techtalk/whatever-floats-your-boat-bitter-apt-continues-to-target-bangladesh/