Rewterz Threat Alert – Agent Tesla Malware – IOCs - Rewterz
Tags
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Software - T1592.002 Scripting - T1064 Scripting |
Common Information
| Type | Value |
|---|---|
| UUID | ced48efb-b966-48c5-bd8a-a6a8980f46bf |
| Fingerprint | c3a845446f15a74f |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | June 30, 2020, 11:40 a.m. |
| Added to db | Dec. 18, 2024, 10:57 p.m. |
| Last updated | Dec. 19, 2024, 8:19 p.m. |
| Headline | Rewterz Threat Alert – Agent Tesla Malware – IOCs |
| Title | Rewterz Threat Alert – Agent Tesla Malware – IOCs - Rewterz |
| Detected Hints/Tags/Attributes | 22/2/14 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 3 | cve-2020-4557 |
|
| Details | Domain | 10 | webcam.it |
|
| Details | Domain | 1 | rrrrload03.top |
|
| Details | Domain | 1 | urep01.top |
|
| Details | Domain | 1 | tdos05.top |
|
| Details | Domain | 2 | biz9holdings.com |
|
| Details | sha1 | 1 | f376500bafd095efd5004fc408c32f152c3ea9ee |
|
| Details | IPv4 | 2 | 34.105.129.68 |
|
| Details | Url | 1 | http://34.105.129.68/file_handler/file.php?hash=f376500bafd095efd5004fc408c32f152c3ea9ee&js=b84fe957bf |
|
| Details | Url | 1 | http://34.105.129.68/gate |
|
| Details | Url | 1 | http://rrrrload03.top/downfiles/6.exe |
|
| Details | Url | 1 | http://urep01.top/index.php |
|
| Details | Url | 1 | http://tdos05.top/index.php |
|
| Details | Url | 1 | http://biz9holdings.com/invoice/4idethf102o6epw.exe |