AcidPour | New Embedded Wiper Variant of AcidRain Appears in Ukraine
Description :
SentinelLabs discovered a new Linux wiper named AcidPour, a variant of AcidRain used in attacks against Ukraine. AcidPour expands on AcidRain's capabilities to better target Linux devices like networking gear, IoT, RAIDs, and possibly ICS. Its discovery coincides with telecoms disruptions in Ukraine claimed by a GRU hacktivist persona. Technical analysis confirms similarities between AcidPour and AcidRain, linking it to clusters attributed to Russian intelligence.
Published | Created | Modified |
---|---|---|
2024-03-21 19:58:33 | 2024-03-21 19:58:33 | 2024-03-21 20:10:55 |
Tags
Indicators
IPv4s : Domains : Malwares :- AcidPour
- AcidRain
- 6a8824048417abe156a16455b8e29170f8347312894fde2aabe644c4995d7728
- Sandworm
- Ukraine
- Telecommunications
External References
- https://otx.alienvault.com/pulse/65fc916967e188b26fe41f0b
- https://www.sentinelone.com/labs/acidpour-new-embedded-wiper-variant-of-acidrain-appears-in-ukraine/
You can download the txt file containing the indicators by clicking on the button below: