← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Winter Vivern | Uncovering a Wave of Global Espionage - SentinelOne
WHITE Winter Vivern CyberHunter_NL 2023-03-16 Modified: 2023-04-15
25
IOCs
MEDIUM VOLUME
The Winter Vivern Advanced Persistent Threat (APT) is a pro-Russian cyber-espionage group that targets government and private businesses, including those involved in the ongoing war in Ukraine.
winter vivernprev icefireaperetifcbzcukraineforeign affairspowershellthreatukraine certbelarusrussiaslovakialive
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Prev IceFire Winter Vivern
Indicators of Compromise (7 / 25 total)
All URL FileHash-SHA1 domain
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA1 0e41d3e3b464f3fb8c140340e6a85a376c6c1749 2023-03-16
FileHash-SHA1 0fe3fe479885dc4d9322b06667054f233f343e20 2023-03-16
FileHash-SHA1 83f00ee38950436527499769db5c7ecb74a9ea41 2023-03-16
FileHash-SHA1 a19d46251636fb46a013c7b52361b7340126ab27 2023-03-16
FileHash-SHA1 a574c5d692b86c6c3ee710af69fccbb908fe1bb8 2023-03-16
FileHash-SHA1 c7fa6727fe029c3eaa6d9d8bd860291d7e6e3dd0 2023-03-16
FileHash-SHA1 f39b260a9209013d9559173f12fbc2bd5332c52a 2023-03-16
References (1)
↗ https://www.sentinelone.com/labs/winter-vivern-uncovering-a-wave-of-global-espionage/