ioc[.]one - OSINT Cyber Threat Intelligence Database

Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs - Rewterz

Tags

country:	U.S. Virgin Islands
attack-pattern:	Data Credentials - T1589.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006 Scripting - T1064 Scripting

Show in Graph

Common Information

Type	Value
UUID	c909fae9-7490-417a-941d-235d2d4ed7b8
Fingerprint	a5b42911bc1f8fc5
Analysis status	DONE
Considered CTI value	2
Text language
Published	Oct. 20, 2023, 1:22 p.m.
Added to db	Sept. 3, 2024, 12:49 a.m.
Last updated	Nov. 17, 2024, 12:57 p.m.
Headline	Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
Title	Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs - Rewterz
Detected Hints/Tags/Attributes	64/2/49

Source URLs

	Redirection	Url
Details	Source	https://www.rewterz.com/rewterz-news/rewterz-threat-alert-an-emerging-ducktail-infostealer-active-iocs-19
Details	Redirection	https://www.rewterz.com/rewterz-news/rewterz-threat-alert-an-emerging-ducktail-infostealer-active-iocs-19/

URL Provider

Details	Provider	Source level domain
Details	rewterz.com	www.rewterz.com

Attributes

Details	Type	#Events	Value
Details	Domain	2	skrechelres.com
Details	Domain	3	jerryposter.com
Details	Domain	5	jkbarmossen.com
Details	Domain	2	evinakortu.com
Details	Domain	2	hofsaalos.com
Details	File	8	libbridged.exe
Details	File	96	wallet.dat
Details	md5	1	25e05f7bc4d091782b2c4ea34460de3c
Details	md5	1	56e4a4fe31ad803af61d08fa3d803142
Details	md5	1	246f22ea5a1bf5900c4c64cbe8abb796
Details	md5	1	acf10b89a2aab8d855ddc607638cdc4b
Details	md5	1	14e57d357022c4a64d1e7bddea5e817b
Details	md5	1	d34eb3d2c2e8a413095a1fb8b8252c43
Details	md5	1	2c6c0fdcf6c2d9c1704bda71642bb268
Details	md5	1	1d47c30ef6c35e4a0e185a91d3400326
Details	md5	1	3ebee56b4a6130d7f37d3432bb68516f
Details	md5	1	1e8664bd68ad9bcc0b3b7044be9c72b7
Details	md5	1	96f89e0bcfe22663fb695e5669cdb348
Details	md5	1	50e9dc7be2cf3f71819e46313906d2eb
Details	md5	1	0c8b4dc85811d295b0858a41ec74e4bb
Details	md5	1	763f53a2e363235240fc71ce4373fb2c
Details	sha1	1	e1b5cc246f227667d31f8b6fb9f8a2daefaaa467
Details	sha1	1	68d3bc7f17dd427214ef2cfe23e4fd2c053459f8
Details	sha1	1	6a9718167f5d3914766b09b1242b2bccdcbd7c77
Details	sha1	1	7e4f419fe4776cf72cfff62d8554514d128e1d1f
Details	sha1	1	bc127964a79baa7d9c06fa20e6bcd2181ffa8922
Details	sha1	1	59388b0d1c72797c29cc3f2d7c121edd385b1272
Details	sha1	1	c09bd4a79aeab4577c7178d980e739cf4f04bcd0
Details	sha1	1	14f632b7bcf10697f77772443598205e1cb3ae9b
Details	sha1	1	80493a0bd596d82a803b69c02b7a3248d51e057e
Details	sha1	1	e20288f7f459587ce3ae266f590f9ebfad5e32dc
Details	sha1	1	cb92f6b51fb3b296733711833994229883ef266c
Details	sha1	1	ef20c3d60f0b09a0be58e35a54bb75890c27da3c
Details	sha1	1	e2780fd49d65293f73e553fa578a5f5509207920
Details	sha1	1	930c35755653d40b25ad236ebe8a42770a8cc4eb
Details	sha256	1	60d021711fc8f93b17b42193a01d8ec4bbfc97d6032b24b5f091ad3fbd8b6b50
Details	sha256	1	3fa8dae3ab60817bb7e2da5fbd61c15f9ff5c44e25f4d85caed43fc6368bcf35
Details	sha256	1	3febe1e97f8c36daea8257fd8fdbd7b27f6a28aa5d35f79002d6b3138e5f4677
Details	sha256	1	5237cfb068d9de92ab075a79d396fed551202fc45c6911859f599f2bb1972947
Details	sha256	1	56e3733f03714fc6c79f64ea2643aab1038583ee26080d4bea6f61695d7f7017
Details	sha256	1	5afecf05a252d72482456ea724ca1db930eb30168fca7ba09d810a51197bb238
Details	sha256	1	607169ebdddbc3323495ce0a62a2cb17f0050a6c891fe3f1d59649a7efa539f0
Details	sha256	1	a70c4503d99226f57d2069d1fee9f203eed4a968ccd9de110415c620403c132f
Details	sha256	1	d8d2b3891206f5760b5be72574b432d1e67931aeaabadb979cc485924c6618b7
Details	sha256	1	f9c033bc42acd13583c6d16612ac5a8f4e66efb0002be720b0eb03bef62ba009
Details	sha256	1	4957bedc3e30fe57fd7cb4c5d13c76aebdfb883f2fa5f61e8db6b70c5d02ad14
Details	sha256	1	84761f65068e66bf41b80d16f9c6e09d33ed6bd19c601dd625d883242fb6f01c
Details	sha256	1	746420bf8b72b3cf7998333168b2a8511a755c9d291ce954e7052753351c1564
Details	sha256	1	1f92d382c86fd5f49431a2c7c52842bb3bd07359803b9ec978ea5cf0b9ba1be4