Rewterz Threat Alert – AZORult Malware – Updated IOCs - Rewterz
Tags
country: | Russia |
maec-delivery-vectors: | Watering Hole |
attack-pattern: | Data Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Software - T1592.002 |
Common Information
Type | Value |
---|---|
UUID | 388e8056-8473-4a8c-95dd-a077ffc50fb0 |
Fingerprint | 8b3477716ed7b75f |
Analysis status | DONE |
Considered CTI value | 0 |
Text language | |
Published | April 16, 2021, 12:03 p.m. |
Added to db | Dec. 19, 2024, 2:01 a.m. |
Last updated | Dec. 19, 2024, 8:29 p.m. |
Headline | Rewterz Threat Alert – AZORult Malware – Updated IOCs |
Title | Rewterz Threat Alert – AZORult Malware – Updated IOCs - Rewterz |
Detected Hints/Tags/Attributes | 26/3/21 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | CVE | 3 | cve-2021-1485 |
|
Details | Domain | 1 | academiayara.es |
|
Details | Domain | 1 | kbinsure-preview.ml |
|
Details | Domain | 2 | mbstechnology.redirectme.net |
|
Details | Domain | 2 | alfawood.us |
|
Details | Domain | 2 | sterline.lt |
|
Details | Domain | 2 | staging.onyxa.pl |
|
Details | IPv4 | 1 | 149.28.226.192 |
|
Details | IPv4 | 1 | 45.76.21.114 |
|
Details | IPv4 | 2 | 45.56.119.148 |
|
Details | IPv4 | 2 | 108.61.161.76 |
|
Details | Url | 1 | http://149.28.226.192/index.php |
|
Details | Url | 1 | http://academiayara.es/yxafibkhmszblgm.exe |
|
Details | Url | 1 | http://45.76.21.114/index.php |
|
Details | Url | 1 | http://kbinsure-preview.ml/azorult/index.php |
|
Details | Url | 2 | http://mbstechnology.redirectme.net/index.php |
|
Details | Url | 2 | http://45.56.119.148/index.php |
|
Details | Url | 2 | http://alfawood.us/mkdgs/index.php |
|
Details | Url | 2 | https://sterline.lt/lokk/32/index.php |
|
Details | Url | 2 | http://108.61.161.76/index.php |
|
Details | Url | 2 | http://staging.onyxa.pl/xyutr/index.php |