216.73.216.6

Indicator (IOC)

stix AlienVault · Published 16/06/2026 19:19 · Modified 16/06/2026 19:19

Essential information

Value / Name
http://77.110.122.58:23205/lQhEQui9a4lZ.exe'
Confidence
100/100
Revoked
No
Valid from
16/06/2026 16:27
Valid until
15/07/2026 22:10
Pattern type
stix
Published
16/06/2026 19:19
Modified
16/06/2026 19:19
Author / Source
AlienVault

Description

No description.

Pattern

[url:value = 'http://77.110.122.58:23205/lQhEQui9a4lZ.exe\'']

Labels / Tags

Labels: blockchain c2 chisel clickfix credential theft dga etherrat hidden desktop lateral movement potemkin rmmproject

Marking (TLP)

TLP:CLEAR

Related entities

Reports and intrusion sets linked to this IOC.

Attack reports (1)