Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
Tags
country: U.S. Virgin Islands
attack-pattern: Data Credentials - T1589.001 Keylogging - T1056.001 Keylogging - T1417.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006 Scripting - T1064 Scripting
Show in Graph
Common Information
Type Value
UUID e84e78bf-57db-4059-bf5b-b45e9f1f56f3
Fingerprint a4b60991be674fd5
Analysis status DONE
Considered CTI value 2
Text language
Published Aug. 4, 2023, 11:30 a.m.
Added to db Aug. 7, 2023, 2:30 p.m.
Last updated Nov. 17, 2024, 12:57 p.m.
Headline Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
Title Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
Detected Hints/Tags/Attributes 69/2/12
Source URLs
Redirection Url
Details Source https://www.rewterz.com/rewterz-news/rewterz-threat-alert-an-emerging-ducktail-infostealer-active-iocs-10/
URL Provider
Details Provider Source level domain
Details rewterz.com www.rewterz.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 365 https://www.rewterz.com/feed 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 9 
cve-2023-4104
Details File 8 
libbridged.exe
Details File 96 
wallet.dat
Details md5 1 
4ec912c636655b383b93115dbc24d3cb
Details md5 1 
fb3d0b2118f59bc6f1b2a646c9d507cb
Details md5 1 
34876f3059c0f092661ce66d9a2595fb
Details sha1 1 
a0d12a59aa7237c3ad35fedb73a0731bf5cbc27d
Details sha1 1 
976dac9ab16c6fc648400bf6aac056d97d599570
Details sha1 1 
f45674586d97f19507550f934bd5232eecc82c27
Details sha256 1 
708657dd662640be3aa5fc96e9dfd40b15dce572e012871568ab250a4f5e3a34
Details sha256 1 
76be32e07fc3dbc3a11aa0e1eaf071f7d16c7d1677718e9ec585d66806c70fa4
Details sha256 1 
3b91dc27e38f2784594e33af996f823613715729ce81f6a5c80a8c49872ffdc6