Today > | 16 High | 14 Medium vulnerabilities   -   You can now download lists of IOCs here!

UAC-0188: Targeted cyberattacks using SuperOps RMM (CERT-UA#9797)

May 24, 2024, 2:55 p.m.

Tags
2024-05-24
External References
Description

The joint efforts of CSIRT-NBU and CERT-UA recorded and analyzed a cyber attack aimed at gaining unauthorized remote access to computers of Ukrainian organizations using a legitimate program for remote computer management SuperOps RMM.

Date

Published: May 24, 2024, 2:18 p.m.

Created: May 24, 2024, 2:18 p.m.

Modified: May 24, 2024, 2:55 p.m.

Indicators

f91a54d4e13e94c0e1b74b1b074a222ce50e258fc63dbbb9f2e651c9485771be

dee0e820c2582badd477ccfbe197d6a5803b86b0c1b25503449d9691b6f6166a

dfcd0510f07ca6c2979c4953f6e88447fda360b6a4ff995fd1bb3dc9e0aa9edb

d60bc54742e1e4f49b2ae74080ef293150f38d7e6e624008ef53a7a8dc30d42a

9ff032282abcc4f82dbb71052033f7a5bfbc334dad0e6ddb65fecb8de30a1865

987751d2052b4e04e619b431239f286a789a647c0b99cc702d402110bdcdf8a5

8519569df6b704ff4c1070929395b40933dee93604d087072edbaa3a107491d5

690ce2375759e1c31998011265d31c063615413495cf3596beffe3c11dbaaf06

5a223bf043e552e85f8fe91693221c34aafdfd2b3867e733f756f288a38410a1

57162522bdf6cab0c596672a0e21ecdbdbf9c967b77848f9a25f3e5be3291be1

4a3192769a62c5491838720bf66ea445a5d21668e5dc5a9943548d744ecc9113

46337cb1cc51378858d5e47713b450c063f994c7909fcb010053a70cb9a592fe

30e5f5b2ec76b99e3ac5fbbb8e484047cefe7a04b39f8e31b60c6b1e86f349e4

2ad14276e4678c1f9d63bcfaa0658228e95cc92e16c78f46fa8f767cb7d5ab3d

1cb846e9cf851247ea3955f7c3a310bd87209eff37a031c0c072f1f05bd5c38b

10a6c318be4f1a2f56eedd855e7e5fd4a883a17022b933cd58fa73c184363019

08d39909da1a5b36350493982cf05771445b7f63f11007642fd450cee07b7cde

https://www.dropbox.com/scl/fi/w864v8x6a53zuaphg01t3/chaseonlinestatement032445381.scr?rlkey=ez6lq3jwgu9trx1meprytyhac&dl=1

https://anotepad.com/notes/k55a4dq3

https://www.dropbox.com/scl/fi/s6il9o10zmecnrurvw3m8/document_chasestatement0003241353491.scr?rlkey=i3gjtul68q9zeeuyw0esi1vm0&dl=1

https://anotepad.com/notes/txb53br5

https://anotepad.com/notes/cwknw3qs

https://anotepad.com/notes/4qrjbatw

https://anotepad.com/notes/2st44b98

https://anotepad.com/notes/2d94hf6q

acmaiiykmm@protonmail.com

support2@patient-docs-mail.com

patient-docs-mail.com

Download all indicators here!

Additional Informations

AV EMPTY REPORT