Rewterz Threat Advisory – New GZipDe Malware Drops Metasploit Backdoor - Rewterz
Tags
country: Afghanistan
attack-pattern: Malware - T1587.001 Malware - T1588.001 Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Visual Basic - T1059.005 Vulnerabilities - T1588.006 Connection Proxy - T1090 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID 65338545-65e0-436b-a537-c5ca280b2932
Fingerprint a8ab8dd3be372b13
Analysis status DONE
Considered CTI value 0
Text language
Published June 24, 2018, 6:57 p.m.
Added to db Dec. 19, 2024, 10:05 a.m.
Last updated Dec. 19, 2024, 9:48 p.m.
Headline Rewterz Threat Advisory – New GZipDe Malware Drops Metasploit Backdoor
Title Rewterz Threat Advisory – New GZipDe Malware Drops Metasploit Backdoor - Rewterz
Detected Hints/Tags/Attributes 37/2/6
Source URLs
Redirection Url
Details Source https://www.rewterz.com/rewterz-news/new-gzipde-malware-drops-metasploit-backdoor
Details Redirection https://www.rewterz.com/rewterz-news/new-gzipde-malware-drops-metasploit-backdoor/
URL Provider
Details Provider Source level domain
Details rewterz.com www.rewterz.com
Attributes
Details Type #Events CTI Value
Details Domain 87 
rewterz.com
Details Email 32 
info@rewterz.com
Details IPv4 1 
118.193.251.137
Details IPv4 1 
175.194.42.8
Details Url 1 
http://118.193.251.137/dropbox/?p=bt67hu78hz
Details Url 1 
http://118.193.251.137/dropbox/filesfhjdfkjsjdkfjsdkfjsdfjksdfjsdkfasdfjnadsfjnasdnj/utorrent.exe