Rewterz Threat Alert – Donot APT Group – Active IOCs - Rewterz
Tags
country: | India Pakistan |
maec-delivery-vectors: | Watering Hole |
attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Vulnerabilities - T1588.006 |
Common Information
Type | Value |
---|---|
UUID | 8f3628f4-4740-4543-a076-1df7bf2b6891 |
Fingerprint | 8b908df36fa7cf0f |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | Feb. 25, 2022, 1:39 p.m. |
Added to db | Dec. 19, 2024, 6:10 p.m. |
Last updated | Dec. 19, 2024, 6:11 p.m. |
Headline | Rewterz Threat Alert – Donot APT Group – Active IOCs |
Title | Rewterz Threat Alert – Donot APT Group – Active IOCs - Rewterz |
Detected Hints/Tags/Attributes | 27/3/7 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 5 | tobaccosafe.xyz |
|
Details | md5 | 1 | 814b8ef311baf82545f34fc26be7c245 |
|
Details | sha1 | 1 | 3cfb17465e17e9c6c5f305c12178e0a4b0027f75 |
|
Details | sha256 | 1 | 1deea32da9923887482d6950ffffbb490d92e3dcbe4a39152b92da74285d1277 |
|
Details | Url | 1 | http://tobaccosafe.xyz/nreazyhcftitfyh6/tdm1plu22kdd47p9.php |
|
Details | Url | 1 | http://tobaccosafe.xyz/nreazyhcftitfyh6/tdm1plu22kdd47p9kkhr26x5zhwa0svgk6lctkm1szxhzk90 |
|
Details | Url | 1 | http://tobaccosafe.xyz/nreazyhcftitfyh6/tdm1plu22kdd47p9kkhr26x5zhwa0svgk6lctkm1szxhzk90.rtf |