Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs - Rewterz
Tags
| attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 |
Common Information
| Type | Value |
|---|---|
| UUID | 8ae31f97-96cc-4047-8746-b3d65d43b721 |
| Fingerprint | 87b2cd41b2cf9b4a |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Aug. 10, 2022, 11:44 a.m. |
| Added to db | Dec. 19, 2024, 3:37 a.m. |
| Last updated | Dec. 19, 2024, 8:52 p.m. |
| Headline | Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs |
| Title | Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs - Rewterz |
| Detected Hints/Tags/Attributes | 29/1/9 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 145 | api.2ip.ua |
|
| Details | File | 135 | geo.json |
|
| Details | md5 | 1 | 8647b9d79f73e842e6f47ec0fe553973 |
|
| Details | md5 | 1 | 83da4569d69266fc6ab372b9c25481fb |
|
| Details | sha1 | 1 | 613dadc670927b6d3bc92320abd87e03b75309f5 |
|
| Details | sha1 | 1 | 013e4c3f7ca607fa3ca6e3de06c7d47e36eda21c |
|
| Details | sha256 | 1 | f283bdb7290387f97092c038aeb6a908506a1f2596535a8396f257bd2bc14a24 |
|
| Details | sha256 | 1 | d137e14a9bf33737becc9548027c26f12567d015cacd5d83e99602e54e625d74 |
|
| Details | Url | 134 | https://api.2ip.ua/geo.json |