| _id |
62ee11ba348d24c6a7972e45 |
| reference |
['https://www.virustotal.com/gui/file/a386039e7e7a1f39a353173ef61960458da4a289047122d05f65e03c06d18ead', 'https://www.virustotal.com/gui/file/37be56742b46b5e19e55f6eb70d5f09ee3fe52352d4dc298411de12a8f29378d', 'https://twitter.com/stopmalvertisin/status/1555536709286510592/photo/1', 'https://www.virustotal.com/gui/file/6ac45fc83cd9b9184d889369610a866844df0a70cb90739a4698dd81f29c5acb'] |
| md5 |
[] |
| sha1 |
[] |
| sha256 |
['a386039e7e7a1f39a353173ef61960458da4a289047122d05f65e03c06d18ead', '6ac45fc83cd9b9184d889369610a866844df0a70cb90739a4698dd81f29c5acb', '37be56742b46b5e19e55f6eb70d5f09ee3fe52352d4dc298411de12a8f29378d'] |
| mail |
[] |
| ip |
['185.225.73.221'] |
| domain |
['a.pomf.cat', 'tria.ge'] |
| url |
['https://tria.ge/220805-n2cflsaafj', '185.225.73.221:5493', 'https://a.pomf.cat/hqrdkm.html', 'https://a.pomf.cat/cubjik.exe'] |
| user |
StopMalvertisin |
| tweet |
#Follina CVE-2022-30190
novi fakturi.docx
https://www.virustotal.com/gui/file/a386039e7e7a1f39a353173ef61960458da4a289047122d05f65e03c06d18ead
https://a.pomf.cat/hqrdkm.html
https://www.virustotal.com/gui/file/6ac45fc83cd9b9184d889369610a866844df0a70cb90739a4698dd81f29c5acb
https://a.pomf.cat/cubjik.exe
https://www.virustotal.com/gui/file/37be56742b46b5e19e55f6eb70d5f09ee3fe52352d4dc298411de12a8f29378d
#AsyncRAT
Version: 0.5.7B
Botnet: 2022CVE1
C2: 185.225.73.221:5493
https://tria.ge/220805-n2cflsaafj https://twitter.com/StopMalvertisin/status/1555536709286510592/photo/1 |
| id |
1555536709286510592 |
| retweets |
10 |
| link |
https://twitter.com/StopMalvertisin/status/1555536709286510592 |
| mentions |
[] |
| hashtags |
['#Follina', '#AsyncRAT'] |
| date |
2022-08-05 12:50:26 |
| timestamp |
1659729026 |