ioc[.]one - OSINT Cyber Threat Intelligence Database

Rewterz Threat Alert – Bitter APT Group – Active IOCs

Tags

country:	Bangladesh China Pakistan Saudi Arabia
attack-pattern:	Data Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006

Show in Graph

Common Information

Type	Value
UUID	10570ca4-c357-4a72-9693-3cd67c88aab1
Fingerprint	a6389981af8567e5
Analysis status	DONE
Considered CTI value	2
Text language
Published	Jan. 13, 2023, 7:02 p.m.
Added to db	Oct. 24, 2023, 1:31 p.m.
Last updated	Nov. 17, 2024, 5:55 p.m.
Headline	Rewterz Threat Alert – Bitter APT Group – Active IOCs
Title	Rewterz Threat Alert – Bitter APT Group – Active IOCs
Detected Hints/Tags/Attributes	47/2/11

Source URLs

	Redirection	Url
Details	Source	https://www.rewterz.com/rewterz-news/rewterz-threat-alert-bitter-apt-group-active-iocs-22/
Details	Redirection	https://www.rewterz.com/rewterz-news/rewterz-threat-alert-bitter-apt-group-active-iocs-22

URL Provider

Details	Provider	Source level domain
Details	rewterz.com	www.rewterz.com

Attributes

Details	Type	#Events	CTI	Value
Details	CVE	34		cve-2023-4516
Details	CVE	36		cve-2023-45208
Details	CVE	375		cve-2017-11882
Details	CVE	58		cve-2018-0798
Details	CVE	117		cve-2018-0802
Details	Domain	2		wcnsappword.com
Details	File	2		wave.php
Details	md5	1		26c59bd3fd3d6680c1c1e86dc34716fd
Details	sha1	1		8365aaa97bae7a9d44680b7c45fac317878223b7
Details	sha256	2		5b90d4c397e575965ed49082981fd34272b5e1da010057f6ebcdd4f53a409ad0
Details	Url	1		http://wcnsappword.com/wmis/wave.php?xas=