ioc[.]one - OSINT Cyber Threat Intelligence Database

Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs - Rewterz

Tags

attack-pattern:

Data Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002

Show in Graph

Common Information

Type	Value
UUID	75353155-4262-4868-b214-824d9c03a75a
Fingerprint	87904d53f357bf5e
Analysis status	DONE
Considered CTI value	2
Text language
Published	Nov. 19, 2023, 8:22 a.m.
Added to db	Dec. 19, 2024, 8:51 p.m.
Last updated	Dec. 20, 2024, 7:48 p.m.
Headline	Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs
Title	Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs - Rewterz
Detected Hints/Tags/Attributes	32/1/10

Source URLs

	Redirection	Url
Details	Source	https://www.rewterz.com/rewterz-news/rewterz-threat-alert-stop-djvu-ransomware-active-iocs-115
Details	Redirection	https://www.rewterz.com/rewterz-news/rewterz-threat-alert-stop-djvu-ransomware-active-iocs-115/

URL Provider

Details	Provider	Source level domain
Details	rewterz.com	www.rewterz.com

Attributes

Details	Type	#Events	CTI	Value
Details	CVE	3		cve-2023-40363
Details	Domain	145		api.2ip.ua
Details	Domain	8		zexeq.com
Details	File	135		geo.json
Details	File	74		get.php
Details	md5	1		f72372e558092cf2f815172f6332c888
Details	sha1	1		cad52aeed3ecca508ecfe325d08b20b1a7fcfd0f
Details	sha256	1		3fab9d951baf3b35d3bf1d8ba9e580f626cd2683ca3aff98da5ed1e7850e851a
Details	Url	134		https://api.2ip.ua/geo.json
Details	Url	1		http://zexeq.com/lancer/get.php