216.73.216.133

Indicator (IOC)

stix AlienVault · Published 27/02/2026 11:01 · Modified 04/04/2026 10:01

Essential information

Value / Name
b1bd8f7d4488977cca03954a57f5c8ad7bfd4609bcc3bae92326830fcbd3232c
Confidence
100/100
Revoked
No
Valid from
27/02/2026 10:54
Valid until
23/02/2027 18:48
Pattern type
stix
Published
27/02/2026 11:01
Modified
04/04/2026 10:01
Author / Source
AlienVault

Description

Ps1.Loader.Dohdoor-10059534-0

Pattern

[file:hashes.'SHA-256' = 'b1bd8f7d4488977cca03954a57f5c8ad7bfd4609bcc3bae92326830fcbd3232c']

Labels / Tags

Labels: backdoor dll sideloading dns-over-https dohdoor edr bypass education healthcare united states

Marking (TLP)

TLP:CLEAR