Rewterz Threat Alert – Nanocore RAT- IOC’s - Rewterz
Tags
attack-pattern: | Malware - T1587.001 Malware - T1588.001 |
Common Information
Type | Value |
---|---|
UUID | 605489a1-041e-4949-99d7-223c36f23129 |
Fingerprint | 87be20676edbafc9 |
Analysis status | DONE |
Considered CTI value | 0 |
Text language | |
Published | Sept. 3, 2020, 2:18 p.m. |
Added to db | Dec. 19, 2024, 5:38 a.m. |
Last updated | Dec. 20, 2024, 3:13 p.m. |
Headline | Rewterz Threat Alert – Nanocore RAT- IOC’s |
Title | Rewterz Threat Alert – Nanocore RAT- IOC’s - Rewterz |
Detected Hints/Tags/Attributes | 23/1/8 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 2 | greenhillsrishikesh.com |
|
Details | Domain | 3 | s3.rokket.space |
|
Details | Domain | 131 | cdn.discordapp.com |
|
Details | Url | 2 | https://huh.canto.com/rest/share/album/lo5om/rest/binary/other/plehtpdqal747842kiuc2v4272/download |
|
Details | Url | 2 | https://qh6ohq.am.files.1drv.com/y4mkvn4ytqicrevrmekrzj3o7lbsby0cqclbnusrevobutviifjvjwiurwxy3xvdjd8jjr6fdsvtjh4w63lubg7eaohre5kb6xrrca4trvo5yhux9bxqctzdoelh3vhlnji5fvbxyhljdkdph4lwf8hxaukaolqlqbmeb5odbmeljegnhmr9wulombfzbtfsbiafm3qqfjiykkxxuapmskq/swift |
|
Details | Url | 2 | https://greenhillsrishikesh.com/nel.exe |
|
Details | Url | 2 | https://s3.rokket.space/t_fr7ouh.txt |
|
Details | Url | 2 | http://cdn.discordapp.com/attachments/600109736821784578/638103447845077082/svchost.exe |