Details

_id 62ee11ba348d24c6a7972e37
reference ['https://bazaar.abuse.ch/sample/dfdfddf99781b2553c12dc0eaa764c585279eaa29b70654a11bdc238b6af945e/']
md5 []
sha1 []
sha256 ['dfdfddf99781b2553c12dc0eaa764c585279eaa29b70654a11bdc238b6af945e']
mail []
ip []
domain ['jacksonmuhammad990.duckdns.org']
url []
user Xtemporality
tweet @jstrosch Remcos confirmed. C2 jacksonmuhammad990.duckdns.org:161 h/t to @morphisec for the helpful tips on decrypting the config quickly. Payload here: https://bazaar.abuse.ch/sample/dfdfddf99781b2553c12dc0eaa764c585279eaa29b70654a11bdc238b6af945e/
id 1555569273950593025
retweets 0
link https://twitter.com/Xtemporality/status/1555569273950593025
mentions ['@jstrosch', '@morphisec']
hashtags []
date 2022-08-05 14:59:50
timestamp 1659736790

Tweet