Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs - Rewterz
Tags
attack-pattern: | Data Botnet - T1583.005 Botnet - T1584.005 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 |
Common Information
Type | Value |
---|---|
UUID | b3621e1d-b152-4cc7-8bf4-5f841438f66f |
Fingerprint | 87b0cc41b2cf93ca |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | Aug. 19, 2022, 1:14 p.m. |
Added to db | Dec. 19, 2024, 7:55 p.m. |
Last updated | Dec. 21, 2024, 4:57 a.m. |
Headline | Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs |
Title | Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs - Rewterz |
Detected Hints/Tags/Attributes | 31/1/7 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 145 | api.2ip.ua |
|
Details | File | 135 | geo.json |
|
Details | md5 | 1 | 149e0909140fed6fae67d730717bbeba |
|
Details | sha1 | 1 | d8c6d42dbcf3e616b26328c72f23962abb62a914 |
|
Details | sha256 | 1 | ea5e981ab297f77917081d1df3c61ff23415a89d451b58d05e8837fe0c6a36ab |
|
Details | Threat Actor Identifier - APT | 805 | APT29 |
|
Details | Url | 134 | https://api.2ip.ua/geo.json |