Iranian Hackers Strike Diamond Industry with Data-Wiping Malware in Supply-Chain Attack.
Agrius uses Wiper to target Few years ago they used Fantasy wiper now they are using Apostle Wiper as Ransomware:
IOCs:
Apostle (SHA256)
- 19dbed996b1a814658bef433bad62b03e5c59c2bf2351b793d1a5d4a5216d27e
- 0ba324337b1d76a5afc26956d4dc9f57786483230112eaead5b5c92022c089c7
Fantacy Wiper:
- a5330b1add40a30dccab27294736fcd906ef35ddb811d67cb8379f3ea0957e91
- 5f3b84ad75e068727823c5349e475e4ab5516925d344269d678e94df442537c2
Contacts:
- N/A
Domains:
- N/A
IPs:
- N/A