ioc[.]one - OSINT Cyber Threat Intelligence Database

Rewterz Threat Alert – Remcos RAT – Active IOCs - Rewterz

Tags

country:	Germany
maec-delivery-vectors:	Watering Hole
attack-pattern:	Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Software - T1592.002

Show in Graph

Common Information

Type	Value
UUID	2794252e-8d95-422f-809f-c9688e6b04a7
Fingerprint	a48603450f8def4f
Analysis status	DONE
Considered CTI value	2
Text language
Published	July 8, 2021, 3:58 p.m.
Added to db	Dec. 19, 2024, 5:25 a.m.
Last updated	Dec. 19, 2024, 8:34 p.m.
Headline	Rewterz Threat Alert – Remcos RAT – Active IOCs
Title	Rewterz Threat Alert – Remcos RAT – Active IOCs - Rewterz
Detected Hints/Tags/Attributes	23/3/23

Source URLs

	Redirection	Url
Details	Source	https://www.rewterz.com/rewterz-news/rewterz-threat-alert-remcos-rat-active-iocs-13

URL Provider

Details	Provider	Source level domain
Details	rewterz.com	www.rewterz.com

Attributes

Details	Type	#Events	Value
Details	CVE	4	cve-2021-1359
Details	md5	1	6ab1f0bd1d6f7888f51557fde94688d8
Details	md5	1	45e49c490447053ae16813318086aa61
Details	md5	1	923ec143594a13e3a9585e2d86e7e890
Details	md5	1	7db2c2cb8780cfbe64ac49beb00f27f2
Details	md5	1	6c7ed035722165abe2e58da3fc6a024f
Details	md5	1	e923b22f256d91583a849dd17f043c2f
Details	md5	1	649e264be8f3e82828fb5e84466afedd
Details	sha1	1	8ba24c07ca2c08fcd85025f6b7d2c259a43c7042
Details	sha1	1	626f4dc2526cce21ec596c2dbd4da8c36f3b66e8
Details	sha1	1	9ab99a5a8c0797e44e38bcea1fe7716f337117e5
Details	sha1	1	443f56c64b3c6bd6b4c0969a59d5d3fd21170386
Details	sha1	1	29e654316c4397945d729ab6c0d8be543af6b70c
Details	sha1	1	aaf20ccd444cf00d9db84c07170db3b785157d29
Details	sha1	1	abaf0dfc2f573bddacef5c578e5c5d85f8217e1b
Details	sha256	1	d144ad20d75ca601f1189b61459dd9f330ca804db475823bd3e0bb3c0c89f4df
Details	sha256	1	b8af6006761eadcbd22b7907cc050ef211d9a590c0f7600f5611d388762b4441
Details	sha256	1	129b7cf64e3afecabb3a0c27fedc69cbade9c81ce3c0a5da367717bdef49f7c9
Details	sha256	1	5c85d31e96aa84a80c123af889f960bbf39a7c13a2ed9e2d9644ad2e3fa366de
Details	sha256	1	8c9ba9842e3e17a820085d913d34d20414ab7acee8106142ce04b5b2bf2581b7
Details	sha256	1	653162513b0b91ca4232620e9233402d8da6b89a362c78475d2c20da78f9e72d
Details	sha256	1	79861a10fcfaf967d54382b93d84ed03e5d5202cd3dfdcb599a535520360017e
Details	Windows Registry Key	50	HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce