Urgently preventing dangerous malware from attacking banking systems of Vietnam

Thuy Phu

11:34, 23/07/2018

Recently, the Vietnam Computer Emergency Response Team (VNCERT) - Ministry of Information and Communications urgently issued Official Dispatch No. 234/VNCERT-DPUC, which provides measures to timely detect and prevent targeted attacks on banks and critical national infrastructure organizations.

According to VNCERT's assessment, these are highly dangerous malware that can steal and destroy information systems. Therefore, the following actions are necessary:

* Monitor and block connections to the following IP addresses of command and control servers:

- 38.132.124.250

- 89.249.65.220

* Scan the system and delete corresponding malicious directories and files with the following sizes:

- Syschk.ps1 (318 KB (326,224 bytes))

+ MD5: 26466867557F84DD4784845280DA1F27

+ SHA-1: ED7FCB9023D63CD9367A3A455EC94337BB48628A

- Hs.exe (259 KB (265,216 bytes))

+ MD5: BDA82F0D9E2CB7996D2EEFDD1E5B41C4

+ SHA-1: 9FF715209D99D2E74E64F9DB894C114A8D13229A

After performing the check and deleting the files containing the malware, units shall report the situation to the VNCERT before 12 p.m. on July 26, 2018, via email at ir@vncert.gov.vn or by phone at 0869100319.

For detailed instructions, please refer to the Appendix attached to Official Dispatch No. 234/VNCERT-DPUC dated July 21, 2018.

>> CLICK HERE TO READ THIS ARTICLE IN VIETNAMESE

3 lượt xem

- The legal regulations in this article are according to Vietnamese Law;
- This English translation is for reference purposes only and not a definitive translation of the original Vietnamese texts;
- Articles may be compiled from a variety of sources;
- Applicable Terms may have expired at the time you are reading;
- If you have any questions about the copyright of the article, please contact us via email banquyen@lawnet.vn