216.73.216.233

Indicator (IOC)

stix Revoked AlienVault · Published 21/12/2025 00:44 · Modified 21/12/2025 03:57

Essential information

Value / Name
a78cc475c1875186dcd1908b55c2eeaf1bcd59dedaff920f262f12a3a9e9bfa8
Confidence
100/100
Revoked
Yes
Valid from
03/05/2024 11:05
Valid until
06/08/2025 11:05
Pattern type
stix
Published
21/12/2025 00:44
Modified
21/12/2025 03:57
Author / Source
AlienVault

Description

Win32:Evo-gen\ [Trj]

Pattern

[file:hashes.'SHA-256' = 'a78cc475c1875186dcd1908b55c2eeaf1bcd59dedaff920f262f12a3a9e9bfa8']

Labels / Tags

Labels: birdyclient bluelight bs2005 c server china chopper espionage ewstew godzilla graphican graphite graphon icefog ketrican lazagne microsoft graph mimikatz onedrivebirdyclient pupykatz pwdump pypykatz safetykatz sharpsecdump siestagraph sofacy swallowtail

Marking (TLP)

TLP:CLEAR

Related entities

Reports and intrusion sets linked to this IOC.

Intrusion sets (1)

  • Graphite
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 ·