216.73.217.22

Indicator (IOC)

stix Revoked AlienVault · Published 21/12/2025 00:52 · Modified 03/02/2026 16:13

Essential information

Value / Name
togetheroffway.com
Confidence
100/100
Revoked
Yes
Valid from
08/09/2025 17:17
Valid until
03/02/2026 16:12
Pattern type
stix
Published
21/12/2025 00:52
Modified
03/02/2026 16:13
Author / Source
AlienVault

Description

No description.

Pattern

[domain-name:value = 'togetheroffway.com']

Labels / Tags

Labels: advanced persistent threat barracuda c programming language castletap china china chopper contractor ecosystem cve-2023-20198 cve-2023-2868 cve-2023-35082 cve-2024-3400 cve20232868 cyber espionage cyberespionage demodex depthcharge domain infrastructure driedmoat foxglove foxtrot ghostemperor infrastructure targeting long-term access long-term persistence ministry of state security persistent threat phishing sandbar seaside seaspray

Marking (TLP)

TLP:CLEAR

Related entities

Reports and intrusion sets linked to this IOC.

Intrusion sets (3)

  • Salt Typhoon
    The MITRE Corporation Confidence 100

    [Salt Typhoon](https://attack.mitre.org/groups/G1045) is a People's Republic of China (PRC) state-backed actor that has been active since at least 2019 and responsible for numerous compromises of network infrastructure at…

    First seen 01/01/1970 · Last seen 16/11/5138 ·
  • Salt Typhoon, UNC4841
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 ·
  • UNC4841
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 ·