Rewterz Threat Alert – DNS Compromise Attack Phishing Spam - Rewterz
Tags
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Botnet - T1583.005 Botnet - T1584.005 Dns - T1071.004 Dns - T1590.002 Domains - T1583.001 Domains - T1584.001 Javascript - T1059.007 Phishing - T1660 Phishing - T1566 Scripting - T1064 Scripting |
Common Information
| Type | Value |
|---|---|
| UUID | 49c9a78e-31b6-4d7d-9b9d-7aea9d7c1bd6 |
| Fingerprint | 82ed82722f5c82cf |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | June 11, 2019, 4:45 p.m. |
| Added to db | Dec. 19, 2024, 8:16 p.m. |
| Last updated | Dec. 19, 2024, 8:17 p.m. |
| Headline | Rewterz Threat Alert – DNS Compromise Attack Phishing Spam |
| Title | Rewterz Threat Alert – DNS Compromise Attack Phishing Spam - Rewterz |
| Detected Hints/Tags/Attributes | 20/2/27 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 3 | cve-2019-0303 |
|
| Details | Domain | 1 | appteslerapp.com |
|
| Details | Domain | 1 | fetch.bucsgwbno.samaste.net |
|
| Details | Domain | 1 | fetch.faonwvzso.ourmazdcompany.net |
|
| Details | Domain | 1 | fetch.kkqhoniv.baranweddings.com |
|
| Details | Domain | 1 | fetch.nukss.hrhuae.com |
|
| Details | Domain | 1 | fetch.pebabsacc.sarahelizabethjewelry.com |
|
| Details | Domain | 1 | fetch.qedrbzpzzx.baranevents.com |
|
| Details | Domain | 1 | www.1835bfg36abp.ctifsouteni.icu |
|
| Details | Domain | 1 | www.14534bfg36abp.etapportert.icu |
|
| Details | Domain | 1 | www.488bfg36abp.ffrirbesoin.icu |
|
| Details | Domain | 1 | www.5438bfg36abp.ffrirbesoin.icu |
|
| Details | Domain | 1 | www.55696bfg36abp.ielassocier.icu |
|
| Details | Domain | 1 | www.66688bfg36abp.ffrirbesoin.icu |
|
| Details | Domain | 1 | www.7913bfg36abp.etapportert.icu |
|
| Details | Domain | 1 | www.81934bfg36abp.etapportert.icu |
|
| Details | Domain | 1 | ns1.firstdnshoster.com |
|
| Details | Domain | 1 | ns.firstdnshoster.com |
|
| Details | Url | 1 | http://www.1835bfg36abp.ctifsouteni.icu/456.xn |
|
| Details | Url | 1 | http://www.14534bfg36abp.etapportert.icu/5436.xn |
|
| Details | Url | 1 | http://www.488bfg36abp.ffrirbesoin.icu/1446.xn |
|
| Details | Url | 1 | http://www.5438bfg36abp.ffrirbesoin.icu/3643.xn |
|
| Details | Url | 1 | http://www.55696bfg36abp.ielassocier.icu/7467.xn |
|
| Details | Url | 1 | http://www.66688bfg36abp.ffrirbesoin.icu/3161.xn |
|
| Details | Url | 1 | http://www.7913bfg36abp.etapportert.icu/33476.xn |
|
| Details | Url | 1 | http://www.81934bfg36abp.etapportert.icu/3185.xn |
|
| Details | Url | 1 | https://appteslerapp.com |