ioc[.]one - OSINT Cyber Threat Intelligence Database

Rewterz Threat Alert – New NodeStealer Variant Targeting Facebook Business Accounts and Crypto Wallets – Active IOCs

Tags

country:	Vietnam U.S. Virgin Islands
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Direct Credentials - T1589.001 Credentials From Web Browsers - T1555.003 Credentials From Web Browsers - T1503 Javascript - T1059.007 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Python - T1059.006 Social Media - T1593.001 Software - T1592.002 Vulnerabilities - T1588.006 Scripting - T1064 Scripting

Show in Graph

Common Information

Type	Value
UUID	103738d4-ba7e-4f73-8323-c9558736ec51
Fingerprint	e5b419910b27dfe6
Analysis status	DONE
Considered CTI value	2
Text language
Published	Aug. 3, 2023, 10:39 a.m.
Added to db	Aug. 7, 2023, 1 p.m.
Last updated	Nov. 17, 2024, 12:59 p.m.
Headline	Rewterz Threat Alert – New NodeStealer Variant Targeting Facebook Business Accounts and Crypto Wallets – Active IOCs
Title	Rewterz Threat Alert – New NodeStealer Variant Targeting Facebook Business Accounts and Crypto Wallets – Active IOCs
Detected Hints/Tags/Attributes	60/3/51

Source URLs

	Redirection	Url
Details	Source	https://www.rewterz.com/rewterz-news/rewterz-threat-alert-new-nodestealer-variant-targeting-facebook-business-accounts-and-crypto-wallets-active-iocs/

URL Provider

Details	Provider	Source level domain
Details	rewterz.com	www.rewterz.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	365	✔	—	https://www.rewterz.com/feed	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	CVE	11	cve-2023-4068
Details	CVE	5	cve-2023-20204
Details	Domain	75	tinyurl.com
Details	Domain	3	adgowin66.site
Details	Domain	3	bat.zip
Details	Domain	3	ratkyc.zip
Details	File	674	node.js
Details	File	3	bat.zip
Details	File	3	ratkyc.zip
Details	md5	1	623042b57f5510b5f300e5bec46c51e2
Details	md5	1	37fcb644dd588a5683249e7db7d03b40
Details	md5	1	f389693ff4e9863b712e80314bf4a6a8
Details	md5	1	a24a56622341bb722a0cffec3effd85b
Details	md5	1	ed0fe734a63699d3fbf42f6251e4697a
Details	md5	1	2d62aa427512ed47755fdf5749fe90a5
Details	md5	1	f160da34e4b707870c9e82007f062bf5
Details	md5	1	6c4360a9e1b23995675a8599d70aa443
Details	md5	1	c704c8a5400f353e4f232211ddedb0a3
Details	md5	1	8d41f5eaac4acca0d1d675b28da1df58
Details	md5	1	490693860a69fb031bea7b20749adf15
Details	md5	1	f96842ca672f1672187963ca93adb898
Details	md5	1	319bc0b98430d630a64a36a29e7cece9
Details	sha1	1	e86f3204cf919db10e6fa1609fb535e440d23bb5
Details	sha1	1	95b5957f1afc5ad1ecb186e9591ff4ded7c74be1
Details	sha1	1	f1eb1e9c049a46c8d96bb44de7ecf80edfa64d04
Details	sha1	1	1073eb6d1bfac659139ae131756d7e526bdc830c
Details	sha1	1	a6d0ebb31bf23b00696232a90ab3853aefb380f3
Details	sha1	1	b7476393290121318b95cc35783c6e3cc183e170
Details	sha1	1	6deb330eca4573c8f260065c6ea61adfb2b40012
Details	sha1	1	ed491981e88c7b349e056f6fc8d0c6d6709ad96d
Details	sha1	1	8dd99a08c5991ebe8511fc3543df98c5a11e676a
Details	sha1	1	fae9ae27839a58084fc4b2d528631e0446afc73e
Details	sha1	1	b1c9b1f39c2af12b9eee533f04f12c5d4816e65e
Details	sha1	1	da5bc554e66905c9c63d1dbd8b5f97854239227b
Details	sha1	1	981896f72353def9cf649f7075338b68b85d15d2
Details	sha256	3	3fff146c3e50a7ddc7e446ae51742c59c3d3277931f3c511d9651497e4ab14a7
Details	sha256	3	f61403729e3f4e212411db486a537eabca2d0b84be21b789cddca4fc3aa85923
Details	sha256	3	a8adea800186dd52173dc6e55c46aa0b3619bef3eee25b17b7edba9353d5d08e
Details	sha256	3	a6509563be7a8569e05198858658b8934d7bc5ad3d41e9806e261995c99a6acf
Details	sha256	3	6d12c657ee403272cb3115fd0a6cf1ffe69cd4476c5a03bbc13c624ddd153518
Details	sha256	3	e856cc78ce1603547bb6fdb3eb9da137f671e9547c072abea63b0248ec82ecb1
Details	sha256	3	1998492619c1fc6a5b78d5c4c6beb05c582a1be6ad2b9ac734179c731bbcf5cc
Details	sha256	3	44dabadbf099bdb28fdc4d86cebe53c00085c9c2ad52df4d4774320409e7358b
Details	sha256	3	fa5b9b72f248e1f79b3a424b61a1bcce8bf6a99452545cfe15d7211f3eb3e93b
Details	sha256	3	001f9d34e694a3d6e301a4e660f2d96bc5d6aa6898f34d441886c6f9160d9e48
Details	sha256	3	9a551426cbb2cd7aded923f277eec195a282913d51c41f1791683e03a85379e0
Details	sha256	3	a8608b8537338659943802bd4c3f37465b6b7146c60088e890f1201452690510
Details	sha256	3	f08394c78f40c3028156c78672d1a8030c64a9f292b1fbb4bd42437381c96a54
Details	Url	3	https://tinyurl.com/batkyc
Details	Url	3	http://adgowin66.site/ratkyc/4/bat.zip
Details	Url	3	http://adgowin66.site/ratkyc/4/ratkyc.zip