Details

_id 6276193f348d24c6a796d6a5
reference ['https://twitter.com/500mk500/status/1522594119587180546/photo/1', 'https://www.virustotal.com/gui/file/7f470429708bc64b6fad7cf6a0d8387e06baf8780963da524a027f96aab2b759/detection', 'https://github.com/stamparm/maltrail/commit/341d799c85fdca52596b4b7d508f5bae569fc90c']
md5 []
sha1 ['341d799c85fdca52596b4b7d508f5bae569fc90c']
sha256 ['7f470429708bc64b6fad7cf6a0d8387e06baf8780963da524a027f96aab2b759']
mail []
ip ['66.42.83.38']
domain ['semara.ru', 'pastebin.com']
url ['https://pastebin.com/0Ycg3EAa']
user 500mk500
tweet #APT #Gamaredon sample: https://www.virustotal.com/gui/file/7f470429708bc64b6fad7cf6a0d8387e06baf8780963da524a027f96aab2b759/detection found on IP: 66.42.83.38 (with old C2: semara.ru) + bunch of NULL-detected #APT #Gamaredon-related (sub-)domains: https://pastebin.com/0Ycg3EAa Detection: https://github.com/stamparm/maltrail/commit/341d799c85fdca52596b4b7d508f5bae569fc90c https://twitter.com/500mk500/status/1522594119587180546/photo/1
id 1522594119587180546
retweets 6
link https://twitter.com/500mk500/status/1522594119587180546
mentions []
hashtags ['#APT', '#Gamaredon', '#APT', '#Gamaredon']
date 2022-05-06 15:08:21
timestamp 1651874901

Tweet