Mimo CoinMiner and Mimus Ransomware Installed via Vulnerability Attacks [Friday, January 19, 2024]

A threat actor called Mimo has been exploiting vulnerabilities to install CoinMiners and other malwa...
Mimo CoinMiner and Mimus Ransomware Installed via Vulnerability Attacks [Friday, January 19, 2024]
Mimo CoinMiner and Mimus Ransomware Installed via Vulnerability Attacks
Report

Mimo CoinMiner and Mimus Ransomware Installed via Vulnerability Attacks

Description :
A threat actor called Mimo has been exploiting vulnerabilities to install CoinMiners and other malware.

Published Created Modified
2024-01-19 14:05:16 2024-01-19 14:05:16 2024-01-19 14:28:55

Tags

Indicators

IPv4s :
  • 102.130.112.157
URLs :
  • https://satoshidisk.com/pay/CIIRg6
  • http://windows.n1tro.cyou:4544
Domains :
  • windows.n1tro.cyou
Emails :
  • arbeyceo@proton.me
Malwares :
  • Mimo
  • Batch
  • Mimus
  • CoinMiner
Hashes :
  • 15Jz1fmreZx9wG93DKjTXMhuLpPpCgvEQk
  • 91f6f3c11c9a2cfff09dd7be94c2c82314d341d6fb9bc7ac3be04cb235bafc55
  • 366b32c15ff2b30da5cafc1407e6dc49aa4bbecffc34c438302022acd1c00b8e
  • 4a61ac7595350ef0b163787b175cecc4e7ee9774d288770fa0ea0289b1d83548
  • 15938c04b37a1881b5cb16c4ad66a40a97fb0e28fd26e42d4f1a10826d12e26e
  • 45729491ec4ae2065672e6d93a3aa7533a8058cecb8fcdb79ecd5d10cfa2aeca
  • 0aa7571d06532fea194a62091a812557a8f8b8d616ffd923df766a4871f4a918
  • 3daddbb3c79b624663339a9603e685a469e92b4c889e6a8a7b8625f769c7c661
  • c17e1a22b7bc00e591aede9d101b843ff2e47d5b582bb0628406bbd53b7dac78
  • 3b326a3e4f0a03db859feeed7e4e3a832acdaeaf8b2cd69ecc0dce73c1a225c9
  • 2dce2586734647ae1b9811e59281583f72c5c624c30a49380e006b0dbb8370c9
  • eee9c44c29c2be011f1f1e43bb8c3fca888cb81053022ec5a0060035de16d848
  • 2c923d8b553bde8ce3167fe83f35a40a712e2bed2b76ebaf5e3e63642d551389
Intrusion set :
  • Mimo
MITRE ATT&CK Techniques : Other observables :
  • CVE-2022-29464
  • CVE-2023-46604
  • CVE-2022-26134
  • CVE-2021-44228

External References

You can download the txt file containing the indicators by clicking on the button below:

About the author
Julien B.

Securitricks

Up-to-Date Cybersecurity Insights & Malware Reports

Securitricks

Great! You’ve successfully signed up.

Welcome back! You've successfully signed in.

You've successfully subscribed to Securitricks.

Success! Check your email for magic link to sign-in.

Success! Your billing info has been updated.

Your billing was not updated.