216.73.217.22

Indicator (IOC)

stix AlienVault · Published 10/04/2026 12:07 · Modified 02/05/2026 00:48

Essential information

Value / Name
eshareflies.im
Confidence
100/100
Revoked
No
Valid from
10/04/2026 10:15
Valid until
05/09/2026 10:10
Pattern type
stix
Published
10/04/2026 12:07
Modified
02/05/2026 00:48
Author / Source
AlienVault

Description

No description.

Pattern

[domain-name:value = 'eshareflies.im']

Labels / Tags

Labels: com abuse in-memory execution peb manipulation powershell staging remote access tool screenconnect uac bypass vbscript loader

Marking (TLP)

TLP:CLEAR

Related entities

Reports and intrusion sets linked to this IOC.

Attack reports (1)