216.73.216.36

Indicator (IOC)

stix Revoked AlienVault · Published 21/12/2025 16:55 · Modified 21/12/2025 16:55

Essential information

Value / Name
http://contirec7nchr45rx6ympez5rjldibnqzh7lsa56lvjvaeywhvoj3wad.onion/
Confidence
100/100
Revoked
Yes
Valid from
30/09/2025 07:15
Valid until
16/11/2025 06:15
Pattern type
stix
Published
21/12/2025 16:55
Modified
21/12/2025 16:55
Author / Source
AlienVault

Description

No description.

Pattern

[url:value = 'http://contirec7nchr45rx6ympez5rjldibnqzh7lsa56lvjvaeywhvoj3wad.onion/']

Labels / Tags

Labels: cobalt strike conti critical infrastructure double extortion education government healthcare ransomware russia-based ryuk trickbot wizard spider

Marking (TLP)

TLP:CLEAR

Related entities

Reports and intrusion sets linked to this IOC.

Intrusion sets (1)

  • Conti
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 ·