Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs - Rewterz
Tags
attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 |
Common Information
Type | Value |
---|---|
UUID | 76b6d459-612f-4a44-a476-8dc206cad50a |
Fingerprint | 8392ed43b2cf9b4e |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | Aug. 23, 2022, 7:35 p.m. |
Added to db | Dec. 19, 2024, 8:32 a.m. |
Last updated | Dec. 19, 2024, 8:52 p.m. |
Headline | Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs |
Title | Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs - Rewterz |
Detected Hints/Tags/Attributes | 30/1/9 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 145 | api.2ip.ua |
|
Details | File | 135 | geo.json |
|
Details | md5 | 1 | a8f1ab790261a122e6a93b9a9a7053b8 |
|
Details | md5 | 1 | ded5fc7a022a57c7abc81445723eaa84 |
|
Details | sha1 | 1 | 5930d9e0c916f88735746eaa591fb4394c9aa50b |
|
Details | sha1 | 1 | 679c7f2e69e34b72802680cab9e41bd94038a7e5 |
|
Details | sha256 | 1 | cb426ac7e72f55e74c5546d36027ada99538bb7b4ea36dca4bd7c692705f86d2 |
|
Details | sha256 | 1 | b39ff23ccae0b2bbfa7ac0e4be10bc45c543298465cd6222e13147df7e82c23f |
|
Details | Url | 134 | https://api.2ip.ua/geo.json |