Rewterz Threat Alert – DJVU Ransomware – Active IOCs - Rewterz
Tags
attack-pattern: | Data Botnet - T1583.005 Botnet - T1584.005 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 |
Common Information
Type | Value |
---|---|
UUID | 5ee4ad7e-4cce-49ad-95ec-e3e99073c356 |
Fingerprint | 85908dd522c7b34a |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | June 7, 2022, 9:33 a.m. |
Added to db | Dec. 19, 2024, 5:33 p.m. |
Last updated | Dec. 19, 2024, 8:52 p.m. |
Headline | Rewterz Threat Alert – DJVU Ransomware – Active IOCs |
Title | Rewterz Threat Alert – DJVU Ransomware – Active IOCs - Rewterz |
Detected Hints/Tags/Attributes | 29/1/10 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | CVE | 4 | cve-2022-1972 |
|
Details | Domain | 145 | api.2ip.ua |
|
Details | File | 135 | geo.json |
|
Details | md5 | 1 | d2c52b9632e1106926d10747963bebc5 |
|
Details | md5 | 1 | 1f139cbbfcee6190f2748b366cf10a52 |
|
Details | sha1 | 1 | 82c4d4180bfd6d785696c3d25801b8b29fb2a78b |
|
Details | sha1 | 1 | eb1f246d3bf8a8e2e7f3ba33a0af9589179e067e |
|
Details | sha256 | 1 | 4c3b2ff55b452b1fef0b16b1850e734e210c76623bfae98c84dfb6b234e057a8 |
|
Details | sha256 | 1 | 5f6ee1090510234d1c019d5fc4d2a4eb571eb3c59987f834614a94ca526fbc19 |
|
Details | Url | 134 | https://api.2ip.ua/geo.json |