216.73.216.36

Indicator (IOC)

stix Revoked AlienVault · Published 21/12/2025 12:31 · Modified 21/12/2025 12:31

Essential information

Value / Name
http://westvist.myftp.org:8181/socket.io/?EIO=4&transport=websocket
Confidence
100/100
Revoked
Yes
Valid from
27/03/2025 22:52
Valid until
13/05/2025 23:52
Pattern type
stix
Published
21/12/2025 12:31
Modified
21/12/2025 12:31
Author / Source
AlienVault

Description

No description.

Pattern

[url:value = 'http://westvist.myftp.org:8181/socket.io/?EIO=4&transport=websocket']

Labels / Tags

Labels: android breadcrumbs c2 server code issues domain hosting eio4 github history infostealer pjobrat pjobrat domain pjobrat package pull

Marking (TLP)

TLP:CLEAR

Related entities

No linked attack reports or intrusion sets yet.