216.73.217.22

Indicator (IOC)

stix Revoked AlienVault · Published 21/12/2025 14:04 · Modified 07/04/2026 13:47

Essential information

Value / Name
api.incapdns.kz
Confidence
100/100
Revoked
Yes
Valid from
03/05/2025 05:04
Valid until
07/04/2026 13:47
Pattern type
stix
Published
21/12/2025 14:04
Modified
07/04/2026 13:47
Author / Source
AlienVault

Description

No description.

Pattern

[hostname:value = 'api.incapdns.kz']

Labels / Tags

Labels: backdoor evasion javascript lnk files more_eggs polymorphism spear-phishing

Marking (TLP)

TLP:CLEAR

Related entities

Reports and intrusion sets linked to this IOC.

Intrusion sets (1)

  • Venom Spider
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 Published 21/12/2025 08:45 · Modified 21/12/2025 08:45