ioc[.]one - OSINT Cyber Threat Intelligence Database

Rewterz Threat Alert – Ursnif Banking Trojan aka Gozi – Active IOCs - Rewterz

Tags

maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Credentials - T1589.001 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Trap - T1546.005 Powershell - T1086 Trap - T1154

Show in Graph

Common Information

Type	Value
UUID	707033b8-0019-49e8-847e-ed2aa7316f6e
Fingerprint	86b145f5ee47cf5f
Analysis status	DONE
Considered CTI value	2
Text language
Published	Jan. 5, 2023, 12:32 p.m.
Added to db	Dec. 19, 2024, 11:07 a.m.
Last updated	Dec. 20, 2024, 11:32 a.m.
Headline	Rewterz Threat Alert – Ursnif Banking Trojan aka Gozi – Active IOCs
Title	Rewterz Threat Alert – Ursnif Banking Trojan aka Gozi – Active IOCs - Rewterz
Detected Hints/Tags/Attributes	23/2/14

Source URLs

	Redirection	Url
Details	Source	https://www.rewterz.com/rewterz-news/rewterz-threat-alert-ursnif-banking-trojan-aka-gozi-active-iocs

URL Provider

Details	Provider	Source level domain
Details	rewterz.com	www.rewterz.com

Attributes

Details	Type	#Events	CTI	Value
Details	CVE	5		cve-2022-45143
Details	CVE	2		cve-2023-0039
Details	md5	1		2dd335e6f00845640a0d490f867db1c5
Details	md5	1		d4cb178d18ec1ee1eeb33d650c86e861
Details	md5	1		f08cc2c53f1c9321676ff186e134b363
Details	md5	1		7e9bfd12c39e68494fada8eabbafad3e
Details	sha1	1		342ff15d4e3ee1b39a54271ba17448f7102ed017
Details	sha1	1		a001b8c1347d0f9ed16f3e57c37d83f7e8f5f27e
Details	sha1	1		f8b9f47b4b211b93069b31eebb14861476c7c97d
Details	sha1	1		002cf71c1f2bf66d36ee8d9f2852ff43cb9a4dc4
Details	sha256	1		a7a86feba39d56914b320770c63b2d59a2187d797fd7c46f0962a174dc1551f6
Details	sha256	1		c120a9b0f22236ec372ce1745b087a08ae494d138b2cb864bef7c660aee7afb9
Details	sha256	1		fceb8d758785f33f7184166b83d4d5129ee8907b5525be11afe4e614b71c56de
Details	sha256	1		3a7b101841bf22ff79f1a5b4f54de3bcc2d54fd172bf552ba3c9f560661ff37e