Se ha detectado una campaña de malware en Colombia que hace uso de imágenes en formato SVG (Scalable Vector Graphics), para comunicar supuestas notificaciones judiciales, las cuales, contienen enlaces para la descarga de troyanos que pueden afectar la confidencialidad, integridad y disponibilidad de la información.
Sha256 – Archivos SVG maliciosos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 – Archivos ZIP maliciosos
034f209faaa06744eddda2d072106301f3ed6dd7dee33ba4c35274900146fc0f
1a57fda5230bd7f30de21aebe23a77b11cb603f17f0858492267c50e7e3b1833
1b5084b4e2bda3d953e4d83ed9e389655dafc4cee3aa761b3f88779d2e7ec043
26be739f7707d2a969b912beb7b5d5a33cb61dd10030bab2944e5a10cacbec46
28f2018a0ebc40133bae0943b7b364a17e4a736da95d7988f0ed448c4be2914c
352713b62c985a37782b984dc390dc98f15254c4a2f0b849ace6396c7722a10e
3e8ea40f39ef6464ebaadab12a0b18f4ac868dc9b3a697f067e77c0f9318933a
43bf7fac8583ee9b7592acb65e57760b11728aaae843a291c8fdbde65469f254
64d946755abbc354b73ef8d82d2b08d8063850899e9563afba115c8c2a655a40
68dba8e9bfc788202c34d14a32572c7c6682dddc391f1c1e2ebf0d8055ea6317
7d75f65a33cf5f9cec4dfb079a0c786aecff23d7b18f5b7cb7c65b1ff7003743
814ee3c0810dab18c7325a133b617f8b9045041d07969077becd9c53abc5f7c0
824b3d1ff3ee6ca151815864f5c1e08858c3c637cad4433b064d359545925a3a
843592e397c13935a30bd349f12284171d77f6afcff1fa4956c92dc1a37e3ebb
9ad52e507df458366fcfa71e7f6c4f66a4408b73aac532a9175768fbf1174d8c
a3686993e2be5a9b321f628784bcb6f303996a763822e0e87533e091fad41a16
b30f07043379c401ad5c93c2f7af33a943548ea648b2a98b80f4d038370625c3
b3ba0b1ae765be743eb1f865fe2434ef3eb8ab65709f07ba0541847b76ad1446
b77dde037834799e6d4dc4c661bfedc54ab1465e836c473a668ac85dc498e29a
c26203f4484b0c8962544987efbb7109be7dd7a426cdf53e647858e193af4853
c99e1492ef6c9a600ce057933f8a4a1e59ca0f7bf8fbc0b96bd75fd068105d1c
cd3a081b56a5ffba4e8bb630595276640cb75b5f08bf3fbe28ca4767c0829602
e6cd93d73e926b3233f6fb90d161724375a8117ce037fb83b6d036fd8f1e6797
ef1ec56b7cf4ec3fae818e1d74471fc30136047b01dbc087d3f0d7b4ccccb81e
C&C - Comando y Control de Malware
91[.]92[.]242[.]165[:]1990
91[.]92[.]242[.]139[:]6000