Rewterz Threat Alert – AlumniLocker and Humble Ransomware – IoCs - Rewterz
Tags
maec-delivery-vectors: | Watering Hole |
attack-pattern: | Data Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Powershell - T1086 |
Common Information
Type | Value |
---|---|
UUID | 778978a3-16b2-4116-b244-c40b223522c0 |
Fingerprint | a770a059ef97a24e |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | March 8, 2021, 5:31 p.m. |
Added to db | Dec. 19, 2024, 7:55 a.m. |
Last updated | Dec. 19, 2024, 7:56 a.m. |
Headline | Rewterz Threat Alert – AlumniLocker and Humble Ransomware – IoCs |
Title | Rewterz Threat Alert – AlumniLocker and Humble Ransomware – IoCs - Rewterz |
Detected Hints/Tags/Attributes | 23/2/31 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | CVE | 5 | cve-2021-27365 |
|
Details | Domain | 2 | femto.pw |
|
Details | Domain | 2 | boot.win32.killmbr.ad |
|
Details | Domain | 1 | root.win32.killmbr.ad |
|
Details | Domain | 2 | www.minpic.de |
|
Details | md5 | 1 | c6fde70f07d7879e028290e0d726fd35 |
|
Details | md5 | 1 | 45af7c4ed9f584df589f34738f74f145 |
|
Details | md5 | 1 | 1f02cb745dc400e8f29589b5a50e91a8 |
|
Details | md5 | 1 | a4ab820409b4a2dc28f7c8d431a1f902 |
|
Details | md5 | 1 | 015bb16ddcbf8a6326ec859020466c05 |
|
Details | md5 | 1 | 8e5a7171f1be0254dad65bfd78646f34 |
|
Details | md5 | 1 | eb154d544f8cb7aeac7700100bfe7c1a |
|
Details | sha1 | 1 | 3d0e9b1ccce6ecc7d946cbbb237b89c10dadf225 |
|
Details | sha1 | 1 | 46f65a6742bccca94098c09f27cc983d12c62c26 |
|
Details | sha1 | 1 | 2e8d8629352682d37479c6d0e87b9f8ec1a0819f |
|
Details | sha1 | 1 | f040239f22c2d4bfa97d53eb4a73e98d0105eb6c |
|
Details | sha1 | 1 | f0ff1059e64175c8bf3f557cf1b0f49ed105d7d4 |
|
Details | sha1 | 1 | 7a207db4d2a447a3c547fda5f34d3f6efda5dcf9 |
|
Details | sha1 | 1 | 5bc2d79943de6b47768db926704e21e88cb95aa2 |
|
Details | sha256 | 2 | 10c252d04e0eb8a91688919a57f27193f0567cf45c8cafdd27577314bf7db704 |
|
Details | sha256 | 2 | 57fafcf93acfc6c45a05ef60207226e21e83f538f2e6ea8077f67c907cdce729 |
|
Details | sha256 | 2 | 5f42b161717463991122f88dd7dba95a26bdd3d8c9ed21c316ba7a51e7270f66 |
|
Details | sha256 | 2 | 6be8927f5d508259c8100d363b42215d7c90845b1c6716a71414a6abbd0df230 |
|
Details | sha256 | 2 | c1eb88cc7f7b43de1ef71fae416c729483d71fa930314c36dfb03b01b8455d31 |
|
Details | sha256 | 2 | dd10602b2500fac1f816c54d698c55ebe6a9e208b909bdafc074ccdb2d82a725 |
|
Details | sha256 | 2 | dd61a8b804059891d5f25b39c1dcd5e880088e217ba30aa80ba2c9dbd35d060d |
|
Details | sha256 | 2 | e97c6e05b1a3d287151638ffe86229597b188f9aa6d34db255f08dbc11dbfbd8 |
|
Details | Url | 2 | https://femto.pw/7unw |
|
Details | Url | 2 | https://femto.pw/cyp5 |
|
Details | Url | 2 | https://www.minpic.de/k/bgk5/fsqz7 |
|
Details | Url | 2 | https://www.minpic.de/k/bgk6/17lim |