Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs - Rewterz
Tags
attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 |
Common Information
Type | Value |
---|---|
UUID | caee9171-0fe3-48a5-b182-f8fb0ffe6a41 |
Fingerprint | c582c5c1b2dfbb4a |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | Sept. 12, 2022, 7:20 p.m. |
Added to db | Dec. 19, 2024, 7:57 a.m. |
Last updated | Dec. 19, 2024, 8:52 p.m. |
Headline | Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs |
Title | Rewterz Threat Alert – STOP/DJVU Ransomware – Active IOCs - Rewterz |
Detected Hints/Tags/Attributes | 28/1/9 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 145 | api.2ip.ua |
|
Details | File | 135 | geo.json |
|
Details | md5 | 1 | 4a5f03dc0debb16a303356e184a7949d |
|
Details | md5 | 1 | 9b2cfcfab9c4a906126f108c4ef5b429 |
|
Details | sha1 | 1 | 05ffad6da8843d5eff90c9d1c2eea62a6f51fc5f |
|
Details | sha1 | 1 | 9d1743153245d997309da20a3f9203808bb0e3f1 |
|
Details | sha256 | 1 | 08e7f61d19f0615a86180fa2bc67707ddf724f8ef6f910095e833d011c9410b5 |
|
Details | sha256 | 1 | b7d71ef31ceb056730099c16a9cf9843231792b6c0712e877e4ae0ede0caae81 |
|
Details | Url | 134 | https://api.2ip.ua/geo.json |