ioc[.]one - OSINT Cyber Threat Intelligence Database

Rewterz Threat Alert – KONNI APT Group – Active IOCs - Rewterz

Tags

country:	Russia
maec-delivery-vectors:	Watering Hole
attack-pattern:	Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566

Show in Graph

Common Information

Type	Value
UUID	9223565f-5670-4bed-b3f7-38a1bcdd4479
Fingerprint	a398a7d30fc5cbea
Analysis status	DONE
Considered CTI value	2
Text language
Published	Oct. 4, 2022, 11:43 a.m.
Added to db	Dec. 19, 2024, 6:13 a.m.
Last updated	Dec. 26, 2024, 11:03 a.m.
Headline	Rewterz Threat Alert – KONNI APT Group – Active IOCs
Title	Rewterz Threat Alert – KONNI APT Group – Active IOCs - Rewterz
Detected Hints/Tags/Attributes	37/3/9

Source URLs

	Redirection	Url
Details	Source	https://www.rewterz.com/rewterz-news/rewterz-threat-alert-konni-apt-group-active-iocs-11

URL Provider

Details	Provider	Source level domain
Details	rewterz.com	www.rewterz.com

Attributes

Details	Type	#Events	CTI	Value
Details	CVE	5		cve-2022-39266
Details	Domain	4		rq7592.c1.biz
Details	File	1004		node.js
Details	File	4		보상명부.xlam
Details	md5	1		d306925713baf2d7410e26deb7f157bc
Details	sha1	1		f0f00aed4052bbbe4eb4d1f990dccb2986ea169c
Details	sha256	1		593811e53cfa8aa655fc5bbf5e27c76e372e7d715b5b4e0e3f36f947d66a70f6
Details	IPv4	1		92.38.160.152
Details	Url	3		http://rq7592.c1.biz/dn.php?name=065367&prefix=cc