Details

_id 62fb40e2348d24c6a7973775
reference ['https://labs.inquest.net/dfi/hash/ca13cac2a248b888dc22fd609688d0abc665a046d0f37b1d82a994030cc5da36']
md5 []
sha1 []
sha256 ['a83400b7666ddb4b0a9c2412684d22e3ea4110bb77862005a590a9f807ed47fc', 'ca13cac2a248b888dc22fd609688d0abc665a046d0f37b1d82a994030cc5da36']
mail []
ip ['198.12.89.174']
domain ['jmcglone.com']
url ['198.12.89.174/hp/shp_20.doc', 'http://jmcglone.com']
user InQuest
tweet 🤖 Potentially malicious RTF document found hosted at: hxxp://jmcglone.com@198.12.89.174/hp/shp_20.doc SHA256: a83400b7666ddb4b0a9c2412684d22e3ea4110bb77862005a590a9f807ed47fc IOC extracted from sample: https://labs.inquest.net/dfi/hash/ca13cac2a248b888dc22fd609688d0abc665a046d0f37b1d82a994030cc5da36 (Automated Tweet. maybe a FP)
id 1559111805087223809
retweets 1
link https://twitter.com/InQuest/status/1559111805087223809
mentions ['@198']
hashtags []
date 2022-08-15 09:36:35
timestamp 1660581395

Tweet