ioc[.]one - OSINT Cyber Threat Intelligence Database

Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs

Tags

country:	U.S. Virgin Islands
attack-pattern:	Data Credentials - T1589.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006 Scripting - T1064 Scripting

Show in Graph

Common Information

Type	Value
UUID	f4167586-ed91-495f-9b6c-fb39b3fef36b
Fingerprint	a5b22851be5f8fd5
Analysis status	DONE
Considered CTI value	2
Text language
Published	Oct. 30, 2023, 8:54 a.m.
Added to db	Nov. 7, 2023, 10:26 a.m.
Last updated	Nov. 17, 2024, 12:57 p.m.
Headline	Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
Title	Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
Detected Hints/Tags/Attributes	62/2/25

Source URLs

	Redirection	Url
Details	Source	https://www.rewterz.com/rewterz-news/rewterz-threat-alert-rewterz-threat-alert-redline-stealer-active-iocs/

URL Provider

Details	Provider	Source level domain
Details	rewterz.com	www.rewterz.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	365	✔	—	https://www.rewterz.com/feed	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	CVE	4	cve-2023-43041
Details	CVE	4	cve-2023-44323
Details	File	8	libbridged.exe
Details	File	96	wallet.dat
Details	md5	1	0f013d3657ff97aad9b9cafd10e9c2eb
Details	md5	1	99538663becc6ccb6b8fb2f1e2034ca7
Details	md5	1	6f104ec477e6b8dc87dba7a32fe9203d
Details	md5	1	3235c4e6858c7d6088acfbf0fca65973
Details	md5	1	76848e0db3490ead649412e9badbadc9
Details	md5	1	b7b30d985c70341788c53d26ced02fc0
Details	md5	1	537610a147f258878a2b69b1cf247c67
Details	sha1	1	c0e85afd47e324c06ae2b4bddd38332764389d84
Details	sha1	1	55e9f61faed8dde4a40f43cbc3047b08ca2db08a
Details	sha1	1	730587b226a5daf71ffc27d81f0761b4bf5b7b25
Details	sha1	1	4995b9b5556cb87f9ea1471a139946766edb75ed
Details	sha1	1	dcf4e24bf837ae84552b24c6356c4853e7227ce7
Details	sha1	1	647a8a944e5448c09829b350c24367a4bb8c6736
Details	sha1	1	48f0b47a5612e527bdf1c16b8f9d3977e71894d3
Details	sha256	1	ed0224e8fdb2679623b0844471d41040ad549ac1ab8129c4c79f12046cdd07d4
Details	sha256	1	80912f4a2d48b95c7a5935341e2ec08ab203fdd263baa52dd4c8a99ee08ecb91
Details	sha256	1	b14141f96ce52ea5d185b6edd3253adfa0e460617e16006ac39327120f520d20
Details	sha256	1	3a5d45180bb1b3209905b885a1b33acc1968904ea6a4018103a9f0684412ad9b
Details	sha256	1	b8848591a008b5eea7a407004f0f8902e2f299b998c5fa1599359e91ce234af9
Details	sha256	1	7e27623720f4f1e8574e17676a23e0d06818314e655b9757f3831693209c8540
Details	sha256	1	f5b2f31251e53479264a4697d9d62fbe4983808a50cdf2734c5668f928f57ddb