ioc[.]one - OSINT Cyber Threat Intelligence Database

ROKRAT

Show in Graph

Image Description

Common Information

Type	Value
UUID	e9aa509e-9a2f-44e6-a6c1-d25d989b9753
Fingerprint	281aa963ca87c79b4cd669052c8c0f936ae7037bc236683fb5ee1d31d473f895
Analysis status	DONE
Considered CTI value	0
Text language
Published	May 30, 2017, 11:05 a.m.
Added to db	Jan. 30, 2024, 12:18 p.m.
Last updated	Aug. 31, 2024, 1:30 a.m.
Headline	ROKRAT
Title	ROKRAT
Detected Hints/Tags/Attributes	60/3/17

Source URLs

	Redirection	Url
Details	Source	https://talos-intelligence-site-production.s3.amazonaws.com/document_files/55/Talos_RokRatWhitePaper.pdf?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAU7AK5ITMI4ZSVL7M%2F20240310%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240310T054451Z&X-Amz-Expires=900&X-Amz-SignedHeaders=host&X-Amz-Signature=91f3c6abe8f58d93929c56188069741e9c36d7f607de8d990997abfa243ea79f
Details	Redirection	https://www.talosintelligence.com/resources/55
Details	Source	https://talos-intelligence-site-production.s3.amazonaws.com/document_files/55/Talos_RokRatWhitePaper.pdf?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAU7AK5ITMI4ZSVL7M%2F20240130%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240130T111807Z&X-Amz-Expires=900&X-Amz-SignedHeaders=host&X-Amz-Signature=579f48beabb5006bedbbf3bf9cf7d60b26e8400348844af814b278202d0e365c
Details	Source	https://talos-intelligence-site-production.s3.amazonaws.com/document_files/55/Talos_RokRatWhitePaper.pdf?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAU7AK5ITMI4ZSVL7M%2F20240205%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240205T083221Z&X-Amz-Expires=900&X-Amz-SignedHeaders=host&X-Amz-Signature=e0d4b50fcbe97c761fe857a722e4c32d06939a4d85391af8d223817383c059cf
Details	Source	https://talos-intelligence-site-production.s3.amazonaws.com/document_files/55/Talos_RokRatWhitePaper.pdf?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAU7AK5ITMI4ZSVL7M%2F20240205%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20240205T083238Z&X-Amz-Expires=900&X-Amz-SignedHeaders=host&X-Amz-Signature=bad0a6afbe5580fd8a3b9c9cd09c28497a9436eea37ccb423c101dff09a8a3d2

URL Provider

Details	Provider	Source level domain
Details	amazonaws.com	talos-intelligence-site-production.s3.amazonaws.com
Details	talosintelligence.com	www.talosintelligence.com

Attributes

Details	Type	#Events	CTI	Value
Details	CVE	7		cve-2013-0808
Details	Domain	164		cisco.com
Details	Domain	107		talosintelligence.com
Details	Domain	3		yonsei.ac.kr
Details	Domain	87		www.amazon.com
Details	Domain	7		www.hulu.com
Details	Email	25		talos-external@cisco.com
Details	Email	3		kgf2016@yonsei.ac.kr
Details	File	4		bin0001.ep
Details	File	4		watchcom.jpg
Details	File	4		episode3.mp4
Details	File	1		episodeb.mp4
Details	md5	1		183be2035d5a546670d2b9deeca4eb59
Details	IPv4	2		165.132.10.103
Details	IPv4	1		104.119.137.206
Details	Url	3		https://www.amazon.com/men-war-pc/dp/b001qzgvec/esoftteam/watchcom.jpg
Details	Url	4		http://www.hulu.com/watch/559035/episode3.mp4