← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Gamaredon (Ab)uses Telegram to Target Ukrainian Organizations
WHITE Gamaredon rlawlgh827 2023-01-25 Modified: 2023-02-22
18
IOCs
MEDIUM VOLUME
gamaredon
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Gamaredon
Indicators of Compromise (18)
All CVE FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL
TYPEINDICATORDESCRIPTIONCREATED
CVE CVE-2017-0199 2023-01-25
FileHash-MD5 21a2e24fc146a7baf47e90651cf397ad MD5 of 2d99e762a41abec05e97dd1260775bad361dfa4e8b4120b912ce9c236331dd3f 2023-01-25
FileHash-MD5 54c20281d74df35f625925d9c941e25b MD5 of 9ecf13027af42cec0ed3159b1bc48e265683feaefa331f321507d12651906a91 2023-01-25
FileHash-MD5 da84f8b5c335deaef354958c62b8dafd MD5 of 295654e3284158bdb94b40d7fb98ede8f3eab72171e027360a654f9523ece566 2023-01-25
FileHash-SHA1 540cae6797aa3925a56cc46c2199173504711682 SHA1 of 9ecf13027af42cec0ed3159b1bc48e265683feaefa331f321507d12651906a91 2023-01-25
FileHash-SHA1 87b1a24e14b04b3b9f7be47a08a6d592189d50e1 SHA1 of 2d99e762a41abec05e97dd1260775bad361dfa4e8b4120b912ce9c236331dd3f 2023-01-25
FileHash-SHA1 a57503d23408ac2b8f560d8914a7c7e8b0cd0595 SHA1 of 295654e3284158bdb94b40d7fb98ede8f3eab72171e027360a654f9523ece566 2023-01-25
FileHash-SHA256 295654e3284158bdb94b40d7fb98ede8f3eab72171e027360a654f9523ece566 2023-01-25
FileHash-SHA256 2d99e762a41abec05e97dd1260775bad361dfa4e8b4120b912ce9c236331dd3f 2023-01-25
FileHash-SHA256 9ecf13027af42cec0ed3159b1bc48e265683feaefa331f321507d12651906a91 2023-01-25
URL https://t.me/s/newtesta1 2023-01-25
URL https://t.me/s/chanellsac 2023-01-25
URL https://t.me/s/zapula2 2023-01-25
URL https://t.me/s/zalup2 2023-01-25
URL https://t.me/s/vozmoz2 2023-01-25
URL https://t.me/s/digitli 2023-01-25
URL https://t.me/s/dracarc 2023-01-25
URL https://t.me/s/randomnulls 2023-01-25
References (1)
↗ https://blogs.blackberry.com/en/2023/01/gamaredon-abuses-telegram-to-target-ukrainian-organizations