216.73.216.133

Indicator (IOC)

stix Revoked AlienVault · Published 21/12/2025 04:50 · Modified 21/12/2025 04:50

Essential information

Value / Name
ecab00f86a6c3adb5f4d5b16da56e16f8e742adfb82235c505d3976c06c74e20
Confidence
100/100
Revoked
Yes
Valid from
16/05/2024 18:46
Valid until
19/08/2025 18:46
Pattern type
stix
Published
21/12/2025 04:50
Modified
21/12/2025 04:50
Author / Source
AlienVault

Description

No description.

Pattern

[file:hashes.'SHA-256' = 'ecab00f86a6c3adb5f4d5b16da56e16f8e742adfb82235c505d3976c06c74e20']

Labels / Tags

Labels: backdoor gobear linux linux.gomir malware northkorea southkorea troll stealer

Marking (TLP)

TLP:CLEAR

Related entities

No linked attack reports or intrusion sets yet.