Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs
Tags
| attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 |
Common Information
| Type | Value |
|---|---|
| UUID | 7b6ede07-5c11-4d5c-b7d0-16bad36a91cb |
| Fingerprint | 85330171bb47bf4e |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | July 21, 2023, 1:17 p.m. |
| Added to db | July 24, 2023, 3:32 p.m. |
| Last updated | Sept. 24, 2024, 12:30 a.m. |
| Headline | Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs |
| Title | Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs |
| Detected Hints/Tags/Attributes | 37/1/9 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 365 | ✔ | — | https://www.rewterz.com/feed | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 39 | api.2ip.ua |
|
| Details | File | 29 | geo.json |
|
| Details | md5 | 1 | 49185d36e89393f4c88dd0e9bc76a4c3 |
|
| Details | md5 | 1 | 5b5ab7baef646bea80e697f071bbf44e |
|
| Details | sha1 | 1 | 6a6809b4af2512bc9ab08d80e67c3423ad671dbc |
|
| Details | sha1 | 1 | e176e4664c438c3638ebe64eb584c7ac934636cc |
|
| Details | sha256 | 1 | f169a96abfb9ed2c418b49d1fffda7e2ab2f8a7354ab653ea784889b7dc4096a |
|
| Details | sha256 | 1 | d161b449e6425c7d46207739e3383c6fa78c6697e63569e5777d21914af7126c |
|
| Details | Url | 28 | https://api.2ip.ua/geo.json |