← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
IOC - Pawn Storm Campaign Deploys PRISMEX, Targets Government and Critical Infrastructure Entities
Prolific Russian-aligned cyber espionage group Pawn Storm has deployed a new malware suite that TrendAI™ Research identifies as PRISMEX. The APT group also known as APT28, Fancy Bear, UAC-0001 and Forest Blizzard in its latest observed campaigns target the operational backbone of Ukrainian defense and Western humanitarian and military aid infrastructure. The campaigns, which have been active since at least September 2025, significantly escalated in January 2026, and continue the long-lasting brazen attacks that Pawn Storm deploys against Ukraine since 2014.
Indicators of Compromise (30 / 147 total)
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| FileHash-MD5 | 154ff6774294e0e6a46581c8452a77de | MD5 of 2822c72a59b58c00fc088aa551cdeeb92ca10fd23e23745610ff207f53118db9 | 2026-03-27 | |
| FileHash-MD5 | 15e9255a3e3401e5f6578d2ac45b7850 | MD5 of 5a88a15a1d764e635462f78a0cd958b17e6d22c716740febc114a408eef66705 | 2026-03-27 | |
| FileHash-MD5 | 2f7b4dca1c79e525aef8da537294a6c4 | MD5 of 1ed863a32372160b3a25549aad25d48d5352d9b4f58d4339408c4eea69807f50 | 2026-03-27 | |
| FileHash-MD5 | 4423b8f3456e54eb48dfbde0b4c7984b | MD5 of 52b6fb40e7efb09c2bebe8550178e7e30009600bdedd1acae085d753761b7598 | 2026-03-27 | |
| FileHash-MD5 | 4727582023cd8071a6f388ea3ba2feaa | MD5 of 5a17cfaea0cc3a82242fdd11b53140c0b56256d769b07c33757d61e0a0a6ec02 | 2026-03-27 | |
| FileHash-MD5 | 58f517bdc9ba8de1b69829b0dcf86113 | MD5 of be859b4f4576ec09b69a2ef2d119939f7eb31de121aa01d38e1f0b2290f5a15e | 2026-03-27 | |
| FileHash-MD5 | 5bd25498c247083954eb47acbd199ee7 | MD5 of aefd15e3c395edd16ede7685c6e97ca0350a702ee7c8585274b457166e86b1fa | 2026-03-27 | |
| FileHash-MD5 | 630550e7ae6636c5f1dab5241597c91d | MD5 of 3cb09154a839a5de6e8ef4a04a933b7362afb56cdc4e91368b237e9bcb1cd7b9 | 2026-03-27 | |
| FileHash-MD5 | 6408276cdfd12a1d5d3ed7256bfba639 | MD5 of baad1153e58c86aa1dc9346cdd06be53b5dd2a6cf76202536d6721c934008f8e | 2026-03-27 | |
| FileHash-MD5 | 6f528ad405bffa4a8c2f61b1fa2172fd | MD5 of 40c2e559992a7f595c593b419930a3f216516c3042ad86fb985348d53b6e01b9 | 2026-03-27 | |
| FileHash-MD5 | 744bbe8d7c3d0421fa0deb582481f5ba | MD5 of 8c1dc9732884c6078b23953b78314a8d0d8b8d9fe42e5f97a7cd09b8ace943a9 | 2026-03-27 | |
| FileHash-MD5 | 7c396677848776f9824ebe408bbba943 | MD5 of c91183175ce77360006f964841eb4048cf37cb82103f2573e262927be4c7607f | 2026-03-27 | |
| FileHash-MD5 | 81159738f7ffb50d5bc3c75e5e0ac546 | MD5 of ce2c475461d57f222a6aa22f49420f804a43c2eb29abf8553457a7d30f7cb024 | 2026-03-27 | |
| FileHash-MD5 | 828ff72e8d3dffcc232e6ae2ff100f45 | MD5 of f0d443055143cbd6bce8ef96b52d430e2db321b37b8b93a2a9d0354651702790 | 2026-03-27 | |
| FileHash-MD5 | 859c4b85ed85e6cc4eadb1a037a61e16 | MD5 of 0bb0d54033767f081cae775e3cf9ede7ae6bea75f35fbfb748ccba9325e28e5e | 2026-03-27 | |
| FileHash-MD5 | 8b8903b0e7b7a1a7f501277624bc7e6b | MD5 of 5f397327aeb20718e364bef61e8bad507772708a7d1bf55d8b845170c69f3de0 | 2026-03-27 | |
| FileHash-MD5 | 95e59536455a089ced64f5af2539a449 | MD5 of b2ba51b4491da8604ff9410d6e004971e3cd9a321390d0258e294ac42010b546 | 2026-03-27 | |
| FileHash-MD5 | 9d1ad28ba8644e9a8b7e133960cdb512 | MD5 of d944abab1481457eacf9f1d08f835980c2146ec91513e2eb94714c6abaec5f34 | 2026-03-27 | |
| FileHash-MD5 | 9fc1df92fd199688b1726933f9e349db | MD5 of ea4679d1c05bef0c38b4d910a87f79070ca2e661779a255f523d57ef1921a1c7 | 2026-03-27 | |
| FileHash-MD5 | a7d1d249c43c2198a7c8d66db45c66bb | MD5 of a1b86c8957f460b78d906e1bdede829c4f3b5500d6449e8eba3ae5c302be2b86 | 2026-03-27 | |
| FileHash-MD5 | b120e5a38c593246388688b26b9284b4 | MD5 of ff310202cbff28b47f03b4b0129a5b925a4b7b065af002072a3796920720c34e | 2026-03-27 | |
| FileHash-MD5 | b6a86f44d0a3fa5a5ac979d691189f2d | MD5 of 969d2776df0674a1cca0f74c2fccbc43802b4f2b62ecccecc26ed538e9565eae | 2026-03-27 | |
| FileHash-MD5 | d47261e52335b516a777da368208ee91 | MD5 of fd3f13db41cd5b442fa26ba8bc0e9703ed243b3516374e3ef89be71cbf07436b | 2026-03-27 | |
| FileHash-MD5 | d58e538b6f762f9c5cf220966e5cdc18 | MD5 of 0148c79cdfb21d87731f8e45d38c27242863ec4ea9621c59e537f59ed501c119 | 2026-03-27 | |
| FileHash-MD5 | da3ed6eb6cf4255efccf4596bb932a45 | MD5 of e8889528e2114a700438f73da09449cfdde655a29da6794d0449b5e8aa4dbf2a | 2026-03-27 | |
| FileHash-MD5 | e4122e880c1d946f41d36e74056871c2 | MD5 of f7bda19543074c788c321aed42d955b4d50b7b0a2c3ca83b7f45b5e8b9a10491 | 2026-03-27 | |
| FileHash-MD5 | e4a5c4b205e1b80dc20d9a2fb4126d06 | MD5 of a876f648991711e44a8dcf888a271880c6c930e5138f284cd6ca6128eca56ba1 | 2026-03-27 | |
| FileHash-MD5 | ea6615942f2c23dba7810a6f7d69e2da | MD5 of 3f446d316efe2514efd70c975d0c87e12357db9fca54a25834d60b28192c6a69 | 2026-03-27 | |
| FileHash-MD5 | ee0b44346db028a621d1dec99f429823 | MD5 of 9f4672c1374034ac4556264f0d4bf96ee242c0b5a9edaa4715b5e61fe8d55cc8 | 2026-03-27 | |
| FileHash-MD5 | f8d9b7c864fb7558e8bad4cfb5c8e6ff | MD5 of 8f4bca3c62268fff0458322d111a511e0bcfba255d5ab78c45973bd293379901 | 2026-03-27 |