| _id |
62ea1d47348d24c6a7972b5b |
| reference |
['https://labs.inquest.net/dfi/hash/31d44c5d0a3ff50a737576d94aab07114c71749a04bad73a49f00a527aff6bfc'] |
| md5 |
[] |
| sha1 |
[] |
| sha256 |
['73dc60a0cec547fa1c630bb5f48006648d41d780d03bd262e906dc0b60ff23c2', '31d44c5d0a3ff50a737576d94aab07114c71749a04bad73a49f00a527aff6bfc'] |
| mail |
[] |
| ip |
['192.210.219.10'] |
| domain |
[] |
| url |
['http://192.210.219.10/swiss/trn5/rcp_copy.doc?&'] |
| user |
InQuest |
| tweet |
🤖 Potentially malicious RTF document found hosted at:
hxxp://192.210.219.10/swiss/trn5/rcp_copy.doc?&amp
SHA256: 73dc60a0cec547fa1c630bb5f48006648d41d780d03bd262e906dc0b60ff23c2
IOC extracted from sample: https://labs.inquest.net/dfi/hash/31d44c5d0a3ff50a737576d94aab07114c71749a04bad73a49f00a527aff6bfc
(Automated Tweet. maybe a FP) |
| id |
1554409646655520769 |
| retweets |
1 |
| link |
https://twitter.com/InQuest/status/1554409646655520769 |
| mentions |
[] |
| hashtags |
[] |
| date |
2022-08-02 10:11:53 |
| timestamp |
1659460313 |