216.73.216.133

Indicator (IOC)

stix Revoked AlienVault · Published 20/12/2025 23:14 · Modified 20/12/2025 23:14

Essential information

Value / Name
397cc7543c3b485d9d6ad4d9bc1b25ad098b6484b6a1c4edbd71558103ab0eb3
Confidence
100/100
Revoked
Yes
Valid from
29/12/2022 14:14
Valid until
02/04/2024 15:14
Pattern type
stix
Published
20/12/2025 23:14
Modified
20/12/2025 23:14
Author / Source
AlienVault

Description

Payload delivery

Pattern

[file:hashes.'SHA-256' = '397cc7543c3b485d9d6ad4d9bc1b25ad098b6484b6a1c4edbd71558103ab0eb3']

Labels / Tags

Labels: china cobalt strike dll hijack phishing plugx poison ivy reddelta state-sponsored

Marking (TLP)

TLP:CLEAR

Related entities

No linked attack reports or intrusion sets yet.