The KCCP Cyber Division has identified a suspicious file linked to recent activity targeting key companies in Kouvostoliitto, including Kouvoston Makkara. We suspect a ransomware group may be involved, but their true motives remain unclear.
We are calling on the cybersecurity community to help us:
⚠️ As a general best practice, files of unknown origin should always be analyzed in a secure, isolated environment (e.g. sandbox or virtual machine). Avoid opening or executing them on your primary system.
Your mission begins here: https://files.kccp.fi/sample.zip
Good luck. We're counting on you.
— KCCP Cyber Division