216.73.216.6

Indicator (IOC)

stix Revoked AlienVault · Published 21/12/2025 05:42 · Modified 21/12/2025 07:52

Essential information

Value / Name
utd-gochisu.com
Confidence
100/100
Revoked
Yes
Valid from
11/11/2024 10:50
Valid until
07/09/2025 11:50
Pattern type
stix
Published
21/12/2025 05:42
Modified
21/12/2025 07:52
Author / Source
AlienVault

Description

No description.

Pattern

[domain-name:value = 'utd-gochisu.com']

Labels / Tags

Labels: brand impersonation drive-by download eugenfest eugenloader fakebat google ads loader lummac2 malvertising obfuscation payk_34 paykloader powershell social engineering stealer

Marking (TLP)

TLP:CLEAR

Related entities

Reports and intrusion sets linked to this IOC.

Intrusion sets (2)

  • Eugenfest
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 ·
  • FakeBat
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 ·