{ "name": "UAC-0188: Targeted cyberattacks using SuperOps RMM (CERT-UA#9797)", "slug": "uac-0188-targeted-cyberattacks-using-superops-rmm-cert-ua9797", "description": "The joint efforts of CSIRT-NBU and CERT-UA recorded and analyzed a cyber attack aimed at gaining unauthorized remote access to computers of Ukrainian organizations using a legitimate program for remote computer management SuperOps RMM.", "published": "2024-05-24T12:18:56+00:00", "created_at": "2024-05-24T12:18:56+00:00", "modified_at": "2024-05-24T12:55:29+00:00", "created_at_opencti": "2024-05-24T12:18:56+00:00", "author": "", "confidence": null, "report_types": [], "labels": [], "tags": [ "2024-05-24" ], "related_entities": { "observables": [ { "id": "", "name": "https://www.dropbox.com/scl/fi/w864v8x6a53zuaphg01t3/chaseonlinestatement032445381.scr?rlkey=ez6lq3jwgu9trx1meprytyhac&dl=1" }, { "id": "", "name": "https://anotepad.com/notes/k55a4dq3" }, { "id": "", "name": "https://www.dropbox.com/scl/fi/s6il9o10zmecnrurvw3m8/document_chasestatement0003241353491.scr?rlkey=i3gjtul68q9zeeuyw0esi1vm0&dl=1" }, { "id": "", "name": "https://anotepad.com/notes/txb53br5" }, { "id": "", "name": "https://anotepad.com/notes/cwknw3qs" }, { "id": "", "name": "https://anotepad.com/notes/4qrjbatw" }, { "id": "", "name": "https://anotepad.com/notes/2st44b98" }, { "id": "", "name": "https://anotepad.com/notes/2d94hf6q" }, { "id": "", "name": "patient-docs-mail.com" }, { "id": "", "name": "acmaiiykmm@protonmail.com" }, { "id": "", "name": "support2@patient-docs-mail.com" }, { "id": "", "name": "f91a54d4e13e94c0e1b74b1b074a222ce50e258fc63dbbb9f2e651c9485771be" }, { "id": "", "name": "dee0e820c2582badd477ccfbe197d6a5803b86b0c1b25503449d9691b6f6166a" }, { "id": "", "name": "dfcd0510f07ca6c2979c4953f6e88447fda360b6a4ff995fd1bb3dc9e0aa9edb" }, { "id": "", "name": "d60bc54742e1e4f49b2ae74080ef293150f38d7e6e624008ef53a7a8dc30d42a" }, { "id": "", "name": "9ff032282abcc4f82dbb71052033f7a5bfbc334dad0e6ddb65fecb8de30a1865" }, { "id": "", "name": "987751d2052b4e04e619b431239f286a789a647c0b99cc702d402110bdcdf8a5" }, { "id": "", "name": "8519569df6b704ff4c1070929395b40933dee93604d087072edbaa3a107491d5" }, { "id": "", "name": "690ce2375759e1c31998011265d31c063615413495cf3596beffe3c11dbaaf06" }, { "id": "", "name": "5a223bf043e552e85f8fe91693221c34aafdfd2b3867e733f756f288a38410a1" }, { "id": "", "name": "57162522bdf6cab0c596672a0e21ecdbdbf9c967b77848f9a25f3e5be3291be1" }, { "id": "", "name": "4a3192769a62c5491838720bf66ea445a5d21668e5dc5a9943548d744ecc9113" }, { "id": "", "name": "46337cb1cc51378858d5e47713b450c063f994c7909fcb010053a70cb9a592fe" }, { "id": "", "name": "30e5f5b2ec76b99e3ac5fbbb8e484047cefe7a04b39f8e31b60c6b1e86f349e4" }, { "id": "", "name": "2ad14276e4678c1f9d63bcfaa0658228e95cc92e16c78f46fa8f767cb7d5ab3d" }, { "id": "", "name": "1cb846e9cf851247ea3955f7c3a310bd87209eff37a031c0c072f1f05bd5c38b" }, { "id": "", "name": "10a6c318be4f1a2f56eedd855e7e5fd4a883a17022b933cd58fa73c184363019" }, { "id": "", "name": "08d39909da1a5b36350493982cf05771445b7f63f11007642fd450cee07b7cde" } ], "others": [ { "id": "", "name": "AV EMPTY REPORT" } ] }, "external_refs": [ "https://cert.gov.ua/article/6279419", "https://otx.alienvault.com/pulse/6650a1d0d685ed43d3d82d42" ] }