216.73.217.55

Indicator (IOC)

stix Revoked AlienVault · Published 21/12/2025 02:44 · Modified 21/12/2025 03:29

Essential information

Value / Name
4b36a82e1781ffa1936703971e2d94369e3059c8524d647613244c6f9a92690b
Confidence
100/100
Revoked
Yes
Valid from
27/02/2024 10:02
Valid until
01/06/2025 11:02
Pattern type
stix
Published
21/12/2025 02:44
Modified
21/12/2025 03:29
Author / Source
AlienVault

Description

Delphi

Pattern

[file:hashes.'SHA-256' = '4b36a82e1781ffa1936703971e2d94369e3059c8524d647613244c6f9a92690b']

Labels / Tags

Labels: finland gzip hta file idat loader lnk files phishing powershell rat remcos rat remcosrat reversessh signal spear phishing steganography ukraine vbscript

Marking (TLP)

TLP:CLEAR

Related entities

Reports and intrusion sets linked to this IOC.

Intrusion sets (1)

  • UAC-0184
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 ·