Rewterz Threat Alert – LokiBot Malware – IOCs - Rewterz
Tags
attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 |
Common Information
Type | Value |
---|---|
UUID | 1e0b910b-f395-448c-b7dc-c51339517fa2 |
Fingerprint | a59e3055feddefdf |
Analysis status | DONE |
Considered CTI value | 0 |
Text language | |
Published | Oct. 29, 2020, 2:40 p.m. |
Added to db | Dec. 19, 2024, 1:57 a.m. |
Last updated | Dec. 20, 2024, 3:31 p.m. |
Headline | Rewterz Threat Alert – LokiBot Malware – IOCs |
Title | Rewterz Threat Alert – LokiBot Malware – IOCs - Rewterz |
Detected Hints/Tags/Attributes | 20/1/17 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | CVE | 13 | cve-2020-17087 |
|
Details | Domain | 1 | asdfghjklzxcvbnmmnbvcxzlkjhgfdsapoiuytre.ydns.eu |
|
Details | Domain | 4 | mecharnise.ir |
|
Details | Domain | 1 | opilacorp-bd.com |
|
Details | Domain | 1 | kregmartlime.ga |
|
Details | Domain | 2 | nilemixitupd.biz.pl |
|
Details | Domain | 1 | www.fitydent.com |
|
Details | IPv4 | 2 | 209.141.35.239 |
|
Details | Url | 2 | http://209.141.35.239/33/mto-0217.jpg |
|
Details | Url | 2 | http://209.141.35.239/33/rf-10665.jpg |
|
Details | Url | 1 | http://asdfghjklzxcvbnmmnbvcxzlkjhgfdsapoiuytre.ydns.eu/kung.exe |
|
Details | Url | 1 | http://mecharnise.ir/ife/fre.php |
|
Details | Url | 1 | http://opilacorp-bd.com/aa.exe |
|
Details | Url | 1 | http://kregmartlime.ga/main/ex/us2/vbc.exe |
|
Details | Url | 1 | http://kregmartlime.ga/main/ex/us2/invoice.doc |
|
Details | Url | 1 | http://nilemixitupd.biz.pl/esfrtybigfbgbgfgfrtybigolfjmgjryhtnfglotesloupdat/kpnuiju |
|
Details | Url | 1 | http://www.fitydent.com/gthjiop/dfilp/panel/five/fre.php |