Rewterz Threat Alert – Ursnif Banking Trojan aka Gozi – Active IOCs
Tags
maec-delivery-vectors: | Watering Hole |
attack-pattern: | Data Credentials - T1589.001 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Trap - T1546.005 Powershell - T1086 Trap - T1154 |
Common Information
Type | Value |
---|---|
UUID | 86f7fb01-48b6-4641-9d85-1f765dab5a74 |
Fingerprint | 663821a5bd055f45 |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | Jan. 20, 2023, 1:33 p.m. |
Added to db | Oct. 24, 2023, 1:31 p.m. |
Last updated | Dec. 19, 2024, 1:06 p.m. |
Headline | Rewterz Threat Alert – Ursnif Banking Trojan aka Gozi – Active IOCs |
Title | Rewterz Threat Alert – Ursnif Banking Trojan aka Gozi – Active IOCs |
Detected Hints/Tags/Attributes | 27/2/12 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | CVE | 43 | cve-2023-34052 |
|
Details | CVE | 45 | cve-2023-44483 |
|
Details | CVE | 41 | cve-2023-3676 |
|
Details | md5 | 1 | 0181d2bde2ef1ae6b451f62d0ddfc983 |
|
Details | md5 | 1 | a6bf1b3f30119f708a142910e164e4d9 |
|
Details | md5 | 1 | 083a79884a94c2c4602666a8b9ee8b0f |
|
Details | sha1 | 1 | d95cec327861edd70fa00284344e7f9ab4365c48 |
|
Details | sha1 | 1 | ea6110262a7aa6730276569c359f4ba110bfdc47 |
|
Details | sha1 | 1 | 3c91681825458e12458307ffe558b9c469d34bd9 |
|
Details | sha256 | 1 | e99ec35336c047afd39f89ab0f36feab17962466e63f01a8f471d007a637af8d |
|
Details | sha256 | 1 | 9a238b91d64df210263f7f4b9bb0e60613bc29fa13f680a7e2b25b8c87769545 |
|
Details | sha256 | 1 | 3a7ac806d0cdb073354539552003963d8f63b7e3916b18c22619c69a5d9e7fb5 |