Rewterz Threat Alert – AgentTesla Malware – IOCs - Rewterz
Tags
| attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Software - T1592.002 |
Common Information
| Type | Value |
|---|---|
| UUID | a68625d0-baba-4e0e-be78-a2128be6b688 |
| Fingerprint | 822234636f15a7cf |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | May 14, 2020, 12:40 p.m. |
| Added to db | Dec. 19, 2024, 1:11 a.m. |
| Last updated | Dec. 19, 2024, 8:19 p.m. |
| Headline | Rewterz Threat Alert – AgentTesla Malware – IOCs |
| Title | Rewterz Threat Alert – AgentTesla Malware – IOCs - Rewterz |
| Detected Hints/Tags/Attributes | 25/1/14 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 4 | cve-2019-19300 |
|
| Details | Domain | 10 | webcam.it |
|
| Details | Domain | 1 | inapadvance.com |
|
| Details | Domain | 1 | adamtcarruthers.com |
|
| Details | Domain | 1 | irequestyoutopleaseadviseonthepayment.duckdns.org |
|
| Details | Url | 1 | http://inapadvance.com/wp-content/themes/twentyfifteen/inc/files/mj.exe |
|
| Details | Url | 1 | http://inapadvance.com/wp-content/themes/twentyfifteen/inc/files/kc.exe |
|
| Details | Url | 1 | http://inapadvance.com/wp-content/themes/evolve/library/media/images/pattern/frr.exe |
|
| Details | Url | 1 | http://inapadvance.com/wp-content/themes/evolve/library/media/images/pattern/ez.exe |
|
| Details | Url | 1 | http://adamtcarruthers.com/bottest/node_modules/asynckit/lib/tod.exe |
|
| Details | Url | 1 | http://adamtcarruthers.com/sb/js/jiz.exe |
|
| Details | Url | 1 | http://irequestyoutopleaseadviseonthepayment.duckdns.org/explore.exe |
|
| Details | Url | 1 | http://adamtcarruthers.com/sb/js/buk.exe |
|
| Details | Url | 1 | http://adamtcarruthers.com/sb/js/chb.exe |