Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs - Rewterz
Tags
attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006 |
Common Information
Type | Value |
---|---|
UUID | b97358b0-ab5f-492d-ae4d-1ee6bf4fd302 |
Fingerprint | c5a2c551f27f974b |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | Sept. 8, 2022, 12:17 p.m. |
Added to db | Dec. 19, 2024, 2:15 a.m. |
Last updated | Dec. 19, 2024, 8:52 p.m. |
Headline | Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs |
Title | Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs - Rewterz |
Detected Hints/Tags/Attributes | 28/1/10 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | CVE | 4 | cve-2022-3071 |
|
Details | Domain | 145 | api.2ip.ua |
|
Details | File | 135 | geo.json |
|
Details | md5 | 1 | 3e9186bd9b44bfd8fa7dea5719d03d89 |
|
Details | md5 | 1 | 025ad42411f9cdade15865b6f919e088 |
|
Details | sha1 | 1 | b579cad104abeb7e1dfc1a811db188ac25a7d8bd |
|
Details | sha1 | 1 | 6e232fb741de630efe4ff7300f82358abfebc3e6 |
|
Details | sha256 | 1 | 7374c58646d26e6c219ec99a37ae2f924db9cdaaba4374ddf40df367581d9c6c |
|
Details | sha256 | 1 | 2bbf6f031519e3a719c717075fa6e95349913c4279be2a6e69ce6d7760f8e5e2 |
|
Details | Url | 134 | https://api.2ip.ua/geo.json |