Rewterz Threat Alert – COVID themed targeting from North Korean Kimsuky - Rewterz
Tags
country: | North Korea |
attack-pattern: | Trap - T1546.005 Trap - T1154 |
Common Information
Type | Value |
---|---|
UUID | 1774b796-c148-405b-bbd8-dc0b05af0ed9 |
Fingerprint | 8a3c90516e879b6e |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | March 20, 2020, 11:45 a.m. |
Added to db | Dec. 19, 2024, 8:29 a.m. |
Last updated | Dec. 19, 2024, 3:06 p.m. |
Headline | Rewterz Threat Alert – COVID themed targeting from North Korean Kimsuky |
Title | Rewterz Threat Alert – COVID themed targeting from North Korean Kimsuky - Rewterz |
Detected Hints/Tags/Attributes | 20/2/10 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 5 | crphone.mireene.com |
|
Details | Domain | 3 | mybobo.mygamesonline.org |
|
Details | md5 | 5 | a4388c4d0588cd3d8a607594347663e0 |
|
Details | sha1 | 2 | b066369bbd48b7858f2c1eed1e78d85c8ae4cdb6 |
|
Details | sha256 | 2 | 7d2b9f391588cc07d9ba78d652819d32d3d79e5a74086b527c32126ad88b5015 |
|
Details | Url | 2 | http://crphone.mireene.com/plugin/editor/templates/normal.php?name=web |
|
Details | Url | 2 | http://crphone.mireene.com/plugin/editor/templates |
|
Details | Url | 2 | http://crphone.mireene.com/plugin/editor |
|
Details | Url | 2 | http://mybobo.mygamesonline.org/flower01/post.php |
|
Details | Url | 2 | http://mybobo.mygamesonline.org/flower01/flower01.down |