Rewterz Threat Alert – ServHelper Backdoor – Active IOCs - Rewterz
Tags
attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Powershell - T1059.001 Powershell - T1086 |
Common Information
Type | Value |
---|---|
UUID | 9a88a08e-e3b5-4947-bbad-da2c2dcae208 |
Fingerprint | e1b0d1e66e57e35b |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | Sept. 2, 2021, 12:01 p.m. |
Added to db | Dec. 19, 2024, 10:53 a.m. |
Last updated | Dec. 19, 2024, 10:54 a.m. |
Headline | Rewterz Threat Alert – ServHelper Backdoor – Active IOCs |
Title | Rewterz Threat Alert – ServHelper Backdoor – Active IOCs - Rewterz |
Detected Hints/Tags/Attributes | 37/1/7 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | CVE | 3 | cve-2021-34765 |
|
Details | md5 | 1 | 2849a8738acaf164bfb8b04d00c37804 |
|
Details | md5 | 1 | f5c18800b50b8b1e04331c1ead5d8fb6 |
|
Details | sha1 | 1 | bf756f2022235f97a7eeded1d8ab3504dd314b7e |
|
Details | sha1 | 1 | 1b80b9db1af6ca7db2c9f5103ab1fa9c945c5bb1 |
|
Details | sha256 | 1 | b070b592c1285c5467ebd82a391cbee30c3d2cf3f7a58edbe63157789f7a6661 |
|
Details | sha256 | 1 | cca4cc0c3b8d5f78cb8a7c5fe53d2ed0edbec35f03ca2f574f9b4fad688af757 |