IFIN - The Independent Federated Intelligence Network

CPUID downloads were temporarily compromised earlier today. We have a thread compiling analysis and IoCs for you to investigate:

https://discourse.ifin.network/t/hwmonitor-download-compromised/249

#ThreatIntel #IFIN #ThreatIntelligence

HWMonitor Download Compromised

Observable: CPUID Downloads with Malware Observable Type: Supply Chain compromise (?) Details: Users reporting getting a malware executable while downloading HWMonitor software from the official CPUID website A discussion on Reddit from an everyday user, with some analysis in the comments: Reddit - Please wait for verification Some press coverage: https://cybernews.com/security/cpuid-hwmonitor-hwinfo-cpuz-deliver-malware/

IFIN
Apr 10 at 1:49pmWeb
Show threadG0rb2d ago

@ifin powermax seems also to be backdoored. Maybe worth to check out fd18d0c200b1ba58adb531ead576b0bf7a551bbc84c4b185ebb2c01fef558120 and if it's related to this.

supp0v3[.]com and cdn0v3[.]com seems similar.