ioc[.]one - OSINT Cyber Threat Intelligence Database

UNKNOWN

Tags

Show in Graph

Common Information

Type	Value
UUID	fb827c07-e2bf-4500-876f-0064b0fa9a69
Fingerprint	bc7ec317de606e93
Analysis status	DONE
Considered CTI value	2
Text language
Published	None
Added to db	Sept. 11, 2022, 12:37 p.m.
Last updated	Oct. 15, 2024, 11:21 p.m.
Headline	UNKNOWN
Title	UNKNOWN
Detected Hints/Tags/Attributes	9/0/23

Source URLs

	Redirection	Url
Details	Source	https://raw.githubusercontent.com/blacklotuslabs/IOCs/main/ReverseRat2.0_NightFury_IoCs.txt

URL Provider

Details	Provider	Source level domain
Details	githubusercontent.com	raw.githubusercontent.com

Attributes

Details	Type	#Events	Value
Details	Domain	1	agenda.zip
Details	Domain	3	medizz.co
Details	Domain	2	drigablockszip.sytes.net
Details	Domain	1	zimbrasoft.ddns.net
Details	File	1	agenda.zip
Details	File	8	msftedit.dll
Details	File	26	run.bat
Details	File	2	regadd.bat
Details	File	2	c:\windows\tasks\msftedit.dll
Details	File	1	c:\windows\programs\notepad\msftedit.dll
Details	sha256	1	43b7d3b1da849b3817576f975c106488dcbfe06994b51c7d6a587248ff207a1c
Details	sha256	1	af5dec1a8eed98bbab9c03dd76a980edc987347c43798d726b0ca538376f27be
Details	sha256	1	2ea7edb53aba054d142f4f588edd5231c4dd44e1872ef68c769248e2d1c1ae70
Details	sha256	1	3782e50dbc16dd5291ddf47170fea378d7850b99df9a36f99f8ad829b7ed052e
Details	sha256	1	fb3a9a1de282ab1cd6c021bfe32255360b0d1667ffeeb36ddbf1c3ad229c106b
Details	sha256	1	3539bcaf17cc05dd402c9aad9c574eb1b303b03685080df0c4306d84e1c990ae
Details	sha256	1	6fc1509bf1ba44f9acafd111a3d07796154c801ee6c3a93d3e1a9abd705c0e81
Details	sha256	1	3b6d16d1e799e26e3aed55e45510dc66c97bfbf9cbe0b6e026ce0ebc1b555636
Details	sha256	1	126297d04ce477c566eb99a9e772b1abef6446c6e94248feb7d1c99939dd3ad5
Details	IPv4	2	62.171.191.230
Details	Url	2	https://medizz.co/wp-content/base/phr/shareddocuments/agenda/1.hta
Details	Url	1	http://62.171.191.230
Details	Url	1	http://62.171.191.230:5310