ioc[.]one - OSINT Cyber Threat Intelligence Database

Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs

Tags

country:	U.S. Virgin Islands
attack-pattern:	Data Credentials - T1589.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006 Scripting - T1064 Scripting

Show in Graph

Common Information

Type	Value
UUID	31b8fd15-0fbd-467a-8013-a213cc847cb9
Fingerprint	a5b62951ae7f8fd5
Analysis status	DONE
Considered CTI value	2
Text language
Published	Oct. 26, 2023, 12:41 p.m.
Added to db	Oct. 31, 2023, 1:54 p.m.
Last updated	Nov. 17, 2024, 12:57 p.m.
Headline	Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
Title	Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
Detected Hints/Tags/Attributes	63/2/39

Source URLs

	Redirection	Url
Details	Source	https://www.rewterz.com/rewterz-news/rewterz-threat-alert-an-emerging-ducktail-infostealer-active-iocs-21/

URL Provider

Details	Provider	Source level domain
Details	rewterz.com	www.rewterz.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	365	✔	—	https://www.rewterz.com/feed	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	CVE	3	cve-2023-5633
Details	File	8	libbridged.exe
Details	File	96	wallet.dat
Details	md5	1	adb2e44735f374b567299e34d91b2634
Details	md5	1	ee906d60806716bbed810bd973e4ec73
Details	md5	1	2e771a20b231cd236dce45538a675216
Details	md5	1	4a615f00392f20405a0b972c6e9064ba
Details	md5	1	6f3ec994d03aa94c95b9979cb1afcd11
Details	md5	1	52b84f2823e62f60121e003067feb227
Details	md5	1	638509ae68782ec2bad3b3741b6f28ce
Details	md5	1	dd80836d35e924dd4b67155a4bb72f8b
Details	md5	1	d7b3d09a9b2c0e7fe53872af1f1ceed6
Details	md5	1	bba1a20a64a82afffe832557f79fc33e
Details	md5	1	2b5a99861a041bc4c9553a6d70a3bf18
Details	md5	1	17990cd97a70c13d09a6bbce1050b457
Details	sha1	1	16c6a9fa502be0a68da1728723fff3d20b0d53bb
Details	sha1	1	756ac40328a76378f98abfd48fb07a74d26fa371
Details	sha1	1	b0a19375f1834498515322afc23ad4a146cf3369
Details	sha1	1	8d6c385e1cbd19bec8c332303b56a5276db4a8df
Details	sha1	1	b59ee98b36ea923705c60ecb1dcef5a78a6c0f52
Details	sha1	1	bc44767ee0cc5b6696fd51844bd64844b1b3cfdf
Details	sha1	1	5fb000f80c23fbd76af5c49250a53fb6ab71e658
Details	sha1	1	19e073f34e8f88d862aff335d058f1419892db57
Details	sha1	1	e6779450753e606297957a5ad1ab8b333ffc8773
Details	sha1	1	f45f0325992154beeb404f49abfe84573d59bc0f
Details	sha1	1	a6112e351dffba684bb5d0a60f2b47ca959450a8
Details	sha1	1	a9e03e6894b9c74354c602a12bbf168aa3d2c10a
Details	sha256	1	34e82ca34fd1b85ec1d62d8646756c5ec0df9c2b096e1dbf70fc288cb19d5a72
Details	sha256	1	a01a7b5975d3a97b58f45ab837938b07ab0e2297a4549311cfd0b11d4ec060b9
Details	sha256	1	537fe0f5f4c01598ff5638b3ecf6f51a7c9a69560f6f94a21accba58b9f2689b
Details	sha256	1	90ece45874dbb87a3482bdc796a413510516a6f76be84eccb285a9389aee1972
Details	sha256	1	ccc7c8399acb0390e3c729817b2b273c29257512450d5b0c35cd179b8f29deaa
Details	sha256	1	0000384a66973cb4734ad7184c8447826f45b1928fca13451b63f5c207340c11
Details	sha256	1	350809a5c188dd3778dbb9400739081ae338e2cf08210aff392421c127d58254
Details	sha256	1	ed665c65142e18949b532f95e10aee13d48944f213fb0ffe5e62c611ccd2bd7e
Details	sha256	1	65e616a27f4e5b46bfae071673a40abf74937b83021faf63f6f6b2a0f0cd122b
Details	sha256	1	44041550c85fb6963965dd325ba59e16b5a609926e12669faaaf6adaeca64c33
Details	sha256	1	e8e790db699698210871c177dec38f54a8fb730808119b6843fac8705f9b925f
Details	sha256	1	0ef5a0d2c85e38baf4ef485a4b00fe6625252bb276b72ec890598b40171cd119