Rewterz Threat Alert – AgentTesla – IOCs - Rewterz
Tags
| attack-pattern: | Data Software - T1592.002 |
Common Information
| Type | Value |
|---|---|
| UUID | 900fa5ad-e904-435d-b05c-14c2d98c7d23 |
| Fingerprint | 831ac0636e05e74e |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | April 22, 2020, 2:58 p.m. |
| Added to db | Dec. 19, 2024, 8:19 p.m. |
| Last updated | Dec. 19, 2024, 8:20 p.m. |
| Headline | Rewterz Threat Alert – AgentTesla – IOCs |
| Title | Rewterz Threat Alert – AgentTesla – IOCs - Rewterz |
| Detected Hints/Tags/Attributes | 17/1/18 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 10 | webcam.it |
|
| Details | Domain | 1 | ceara.es |
|
| Details | Domain | 1 | biendaoco.com |
|
| Details | Domain | 1 | empty-arita-4645.fem.jp |
|
| Details | Domain | 1 | 11.evahesse.com |
|
| Details | Domain | 1 | nabionov.net |
|
| Details | Domain | 2 | office-archive-index.com |
|
| Details | IPv4 | 1 | 198.12.66.107 |
|
| Details | IPv4 | 1 | 84.38.130.153 |
|
| Details | Url | 1 | http://ceara.es/000/44.exe |
|
| Details | Url | 1 | http://biendaoco.com/wp-content/plugins/revslider/admin/4dvj14xgx7fdizjd.exe |
|
| Details | Url | 1 | http://empty-arita-4645.fem.jp/ugo/send/sembaaa.exe |
|
| Details | Url | 1 | http://11.evahesse.com/dl.exe |
|
| Details | Url | 1 | http://198.12.66.107/dvmq0lawgad0zmv.exe |
|
| Details | Url | 1 | https://nabionov.net/dj/dj.exe |
|
| Details | Url | 1 | http://84.38.130.153/osiss.exe |
|
| Details | Url | 1 | http://nabionov.net/dj/dj.exe |
|
| Details | Url | 1 | http://office-archive-index.com/tesla.exe |