216.73.217.22

Indicator (IOC)

stix Revoked AlienVault · Published 29/01/2026 17:48 · Modified 27/02/2026 19:33

Essential information

Value / Name
https://7070-ppxcx-a1-3gg5ufwp666ee644-1300076834.tcb.qcloud.la/test/zcgo/go.exe
Confidence
100/100
Revoked
Yes
Valid from
29/01/2026 13:49
Valid until
27/02/2026 19:32
Pattern type
stix
Published
29/01/2026 17:48
Modified
27/02/2026 19:33
Author / Source
AlienVault

Description

No description.

Pattern

[url:value = 'https://7070-ppxcx-a1-3gg5ufwp666ee644-1300076834.tcb.qcloud.la/test/zcgo/go.exe']

Labels / Tags

Labels: asia badiis gotohttp iis persistence powershell regional targeting seo fraud thailand vietnam web shells

Marking (TLP)

TLP:CLEAR

Related entities

No linked attack reports or intrusion sets yet.