Rewterz Threat Alert – AZORult Malware – Active IOCs - Rewterz
Tags
attack-pattern: | Data Credentials - T1589.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Vulnerabilities - T1588.006 |
Common Information
Type | Value |
---|---|
UUID | 78677d4b-f83c-4226-92fb-c01e35e19f20 |
Fingerprint | c7b865717e97074f |
Analysis status | DONE |
Considered CTI value | 0 |
Text language | |
Published | April 9, 2021, 1:22 p.m. |
Added to db | Dec. 19, 2024, 8:29 p.m. |
Last updated | Dec. 19, 2024, 8:30 p.m. |
Headline | Rewterz Threat Alert – AZORult Malware – Active IOCs |
Title | Rewterz Threat Alert – AZORult Malware – Active IOCs - Rewterz |
Detected Hints/Tags/Attributes | 22/1/20 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | CVE | 3 | cve-2021-24027 |
|
Details | Domain | 2 | mbstechnology.redirectme.net |
|
Details | Domain | 2 | alfawood.us |
|
Details | Domain | 2 | sterline.lt |
|
Details | Domain | 2 | staging.onyxa.pl |
|
Details | Domain | 2 | moreirawag.ac.ug |
|
Details | Domain | 2 | nmorbertomo.ac.ug |
|
Details | IPv4 | 2 | 45.56.119.148 |
|
Details | IPv4 | 2 | 108.61.161.76 |
|
Details | IPv4 | 2 | 74.208.130.238 |
|
Details | Url | 2 | http://mbstechnology.redirectme.net/index.php |
|
Details | Url | 2 | http://45.56.119.148/index.php |
|
Details | Url | 2 | http://alfawood.us/mkdgs/index.php |
|
Details | Url | 2 | https://sterline.lt/lokk/32/index.php |
|
Details | Url | 2 | http://108.61.161.76/index.php |
|
Details | Url | 2 | http://staging.onyxa.pl/xyutr/index.php |
|
Details | Url | 1 | http://alfawood.us/xsclk/index.php |
|
Details | Url | 2 | http://74.208.130.238/index.php |
|
Details | Url | 2 | http://moreirawag.ac.ug/index.php |
|
Details | Url | 2 | http://nmorbertomo.ac.ug/msvcp140.dll |