Rewterz Threat Alert – Remcos RAT – Active IOCs - Rewterz
Tags
attack-pattern: Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Rootkit - T1014 Rootkit
Show in Graph
Common Information
Type Value
UUID dc2d799f-4486-4c3d-9003-f13ce129f102
Fingerprint b996734d8ec7ab47
Analysis status DONE
Considered CTI value 2
Text language
Published Oct. 5, 2022, 12:20 p.m.
Added to db Dec. 19, 2024, 2:30 a.m.
Last updated Dec. 19, 2024, 8:51 p.m.
Headline Rewterz Threat Alert – Remcos RAT – Active IOCs
Title Rewterz Threat Alert – Remcos RAT – Active IOCs - Rewterz
Detected Hints/Tags/Attributes 22/1/10
Source URLs
Redirection Url
Details Source https://www.rewterz.com/rewterz-news/rewterz-threat-alert-remcos-rat-active-iocs-84
URL Provider
Details Provider Source level domain
Details rewterz.com www.rewterz.com
Attributes
Details Type #Events CTI Value
Details Domain 53 
machine.it
Details Domain 1 
zelthin.dvrlists.com
Details Domain 1 
server-goeif8.cf
Details md5 1 
fd9b4b423afdd16396c9405a40089622
Details md5 1 
4859c09e16543504b1bed0c6c0f44dd4
Details sha1 1 
6d533d0ddf5f3d2f62f5788bbe08858cae2366aa
Details sha1 1 
0f41055c821a518c9964e4e9ce2156821ed74216
Details sha256 1 
eba266f6fe3d8faea13b7866c5e50c4c68de716922c8b0df76b2e8defcc723ca
Details sha256 1 
a26d870e1e5afce73df367f469d5b95f3ca42a17f4a9809edb3d817cdc3e1ea0
Details Url 1 
http://server-goeif8.cf/duijkomk/encrypted