Rewterz Threat Alert – APT Group Gamaredon – Active IOCs - Rewterz
Tags
country: | Pakistan |
maec-delivery-vectors: | Watering Hole |
attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Template Injection - T1221 |
Common Information
Type | Value |
---|---|
UUID | ff49da39-50d7-426b-87cd-939b770543c5 |
Fingerprint | 8eb003ddfa8fc746 |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | March 4, 2022, 11:55 a.m. |
Added to db | Dec. 19, 2024, 8:21 a.m. |
Last updated | Dec. 19, 2024, 8:22 a.m. |
Headline | Rewterz Threat Alert – APT Group Gamaredon – Active IOCs |
Title | Rewterz Threat Alert – APT Group Gamaredon – Active IOCs - Rewterz |
Detected Hints/Tags/Attributes | 23/3/32 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 2 | classroom14.nay.sour.reapart.ru |
|
Details | md5 | 2 | f9166fae86607ec2f84b02cea5c766b2 |
|
Details | md5 | 2 | 2f075bfa93c839b59929ec32fbce0146 |
|
Details | md5 | 2 | 98a49e7c2c303f1eef20b8023dc8c543 |
|
Details | md5 | 2 | cd73621d52d0c17849cfff55b67961de |
|
Details | md5 | 2 | d06c413d0441be3b716434e1e069c3a5 |
|
Details | md5 | 2 | a42c536aa7ff89e88f70f4a038fbf61f |
|
Details | md5 | 2 | 8b710b4064acced022243b60387c7ee5 |
|
Details | md5 | 2 | 5d716d5cd77f1d1639104b7407317c5e |
|
Details | md5 | 2 | bb1c8ad9f422a39ce6329e93dc060438 |
|
Details | md5 | 2 | 64471311697db4541e0bf30cc16fbbc8 |
|
Details | sha1 | 2 | f6cd63f1e230d999274fe6a09dc2687dd120f7f6 |
|
Details | sha1 | 2 | 9127e5186d3f7767184164bdddf72100775bc3e2 |
|
Details | sha1 | 2 | e5236411b77e039e9635cc8e7d34cc7c5aaf3c05 |
|
Details | sha1 | 2 | 9942cfc5c6ead24763c5b151b2af71d0e5c8b7df |
|
Details | sha1 | 2 | 74ee6fe6bff7f6c04c75fd8c70c197331069de11 |
|
Details | sha1 | 2 | bbe0b91b448de10fd1bb49e82130d8d92692eb63 |
|
Details | sha1 | 2 | afeeaacd0e54ebe85b721d2905037af606f8f752 |
|
Details | sha1 | 2 | 13381c689a23b30599bcffa196700648fda06418 |
|
Details | sha1 | 2 | 7fd965600402cd75f8963993a7df95b5b7b3031a |
|
Details | sha1 | 2 | f8a06fd1061e176712669cfaafbd7fbcee274ca0 |
|
Details | sha256 | 2 | c577bbdfec7983aed227f3079c19f1a6b5680fd3cee278ee0af419b56ea5d14c |
|
Details | sha256 | 2 | 0e592e24593e064f0f4fd3c619807a5e4f176b13be552b01b99ed331ffb55e6e |
|
Details | sha256 | 2 | 3d5071deb287620ad6142ab63dc97c44a1f7cb6b4b4ac51cb68d08907664514c |
|
Details | sha256 | 2 | 3213c5e1427eec00eb33a97e806c147b838d9ef93b8be4f4d4ac98164fd08615 |
|
Details | sha256 | 2 | 42fbc48e1e604605d19cca5c1472ce46e6c6f4cd8fea11880a7c61e7131f4860 |
|
Details | sha256 | 2 | 64223dc258e6687064bbf25527b78e0979d6f13bc8e8669ed0b33dfe43ce9f99 |
|
Details | sha256 | 2 | 7e11c1245e6931ba88c4141f92ef0084aea225f7060a6f84b42de604497973c2 |
|
Details | sha256 | 2 | 9ae94313c293975cc4e6d00ba00739c1c17c079d5e0e11bb74637f349e3c9b57 |
|
Details | sha256 | 3 | 8db529765e5df53e6c9f2614f21b4233fe43714f3438a4a7ec04e454c3662ab1 |
|
Details | sha256 | 2 | ee08d18162a1fbccc3fad7bcd72143d07fa9613528fa4915b137746a04872e98 |
|
Details | Url | 1 | http://classroom14.nay.sour.reapart.ru/win-86k6f87b2s3/bid/sour/glitter.kdp |