| _id |
62ee11b4348d24c6a7972e1b |
| reference |
['https://labs.inquest.net/dfi/hash/c7351eddf1e255e0b5d5d6c7dbd054427f5fef62b7cd9d25b67166e57df21d9b'] |
| md5 |
[] |
| sha1 |
[] |
| sha256 |
['4f52bc5a6093aaacb63b758b980e03c021699264574c2b9966242dce79cd0a99', 'c7351eddf1e255e0b5d5d6c7dbd054427f5fef62b7cd9d25b67166e57df21d9b'] |
| mail |
[] |
| ip |
['198.23.207.54'] |
| domain |
[] |
| url |
['http://198.23.207.54/shp/doc_200.doc'] |
| user |
InQuest |
| tweet |
🤖 Potentially malicious RTF document found hosted at:
hxxp://198.23.207.54/shp/doc_200.doc
SHA256: 4f52bc5a6093aaacb63b758b980e03c021699264574c2b9966242dce79cd0a99
IOC extracted from sample: https://labs.inquest.net/dfi/hash/c7351eddf1e255e0b5d5d6c7dbd054427f5fef62b7cd9d25b67166e57df21d9b
(Automated Tweet. maybe a FP) |
| id |
1555573790087823365 |
| retweets |
1 |
| link |
https://twitter.com/InQuest/status/1555573790087823365 |
| mentions |
[] |
| hashtags |
[] |
| date |
2022-08-05 15:17:47 |
| timestamp |
1659737867 |