216.73.216.233

Indicator (IOC)

stix Revoked AlienVault · Published 21/12/2025 01:14 · Modified 21/12/2025 01:26

Essential information

Value / Name
d4ba16db7c26622d2d402cb9714331abfee891b6276d16e6c2f2132e8944cc71
Confidence
100/100
Revoked
Yes
Valid from
18/09/2023 10:23
Valid until
21/12/2024 09:23
Pattern type
stix
Published
21/12/2025 01:14
Modified
21/12/2025 01:26
Author / Source
AlienVault

Description

ALFPER:Trojan:Win32/RoubmaniPot.A!dha SHA256 of 6239b4d374539c940cffa698e0993d199918a2fc

Pattern

[file:hashes.'SHA-256' = 'd4ba16db7c26622d2d402cb9714331abfee891b6276d16e6c2f2132e8944cc71']

Labels / Tags

Labels: .net agent.btz apt capibar comrat comrat v4 crutch kazuar kopiluwak pensive ursa python quietcanary the crutch backdoor tinyturla turla

Marking (TLP)

TLP:CLEAR

Related entities

No linked attack reports or intrusion sets yet.