Rewterz Threat Alert – RedLine Stealer – Active IOCs - Rewterz
Tags
attack-pattern: | Data Hardware - T1592.001 Malware - T1587.001 Malware - T1588.001 Software - T1592.002 Trap - T1546.005 Vulnerabilities - T1588.006 Trap - T1154 |
Common Information
Type | Value |
---|---|
UUID | d95d1b80-c8fd-4e03-9d0f-57d86b88e533 |
Fingerprint | 8d84e8710fcee74a |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | Feb. 15, 2022, 10:38 a.m. |
Added to db | Dec. 19, 2024, 10:27 a.m. |
Last updated | Dec. 20, 2024, 3:58 p.m. |
Headline | Rewterz Threat Alert – RedLine Stealer – Active IOCs |
Title | Rewterz Threat Alert – RedLine Stealer – Active IOCs - Rewterz |
Detected Hints/Tags/Attributes | 24/1/18 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 3 | windows-upgraded.com |
|
Details | Domain | 4 | discrodappp.com |
|
Details | md5 | 1 | 132b1d6688a4c858e3bfcbd8a699b01a |
|
Details | md5 | 1 | e1e06982d2df5dfc0601c0c22f04fa5c |
|
Details | md5 | 1 | 5a8a76c88fbee181b32d9b7f67af8961 |
|
Details | md5 | 2 | 6dfa84ac778aa418adcb649651d17ccd |
|
Details | sha1 | 1 | 14825027a451f15d027bc3c3967f3f70073170eb |
|
Details | sha1 | 1 | d0728a1a3f67e069d0c955c099ab00144d0116a1 |
|
Details | sha1 | 1 | 477982363ed8f5cb145a301f844e75495d5f7d8d |
|
Details | sha1 | 1 | 746d1419c16b8aa6e3eca6d3fa6c3ae36b67f702 |
|
Details | sha256 | 2 | c7bcdc6aecd2f7922140af840ac9695b1d1a04124f1b3ab1450062169edd8e48 |
|
Details | sha256 | 2 | 4293d3f57543a41005be740db7c957d03af1a35c51515585773cedee03708e54 |
|
Details | sha256 | 2 | 7d5ed583d7efe318fdb397efc51fd0ca7c05fc2e297977efc190a5820b3ee316 |
|
Details | sha256 | 2 | 6b089a4f4fde031164f3467541e0183be91eee21478d1dfe4e95c4a0bb6a6578 |
|
Details | IPv4 | 2 | 45.146.166.38 |
|
Details | IPv4 | 3 | 81.4.105.174 |
|
Details | Threat Actor Identifier - APT | 301 | APT32 |
|
Details | Url | 2 | http://81.4.105.174/win11.jpg |