216.73.216.36

Indicator (IOC)

stix AlienVault · Published 20/12/2025 20:02 · Modified 17/03/2026 11:46

Essential information

Value / Name
7ea4b307e84c8b32c0220eca13155a4cf66617241f96b8af26ce2db8115e3d53
Confidence
100/100
Revoked
No
Valid from
10/12/2025 10:44
Valid until
06/12/2026 18:37
Pattern type
stix
Published
20/12/2025 20:02
Modified
17/03/2026 11:46
Author / Source
AlienVault

Description

No description.

Pattern

[file:hashes.'SHA-256' = '7ea4b307e84c8b32c0220eca13155a4cf66617241f96b8af26ce2db8115e3d53']

Labels / Tags

Labels: ai-enhanced malware anti-analysis backdoor blackbeard critical infrastructure cyberespionage energy espionage ghostbackdoor iranian lamporat maritime nuso phishing phoenix phoenix backdoor social engineering trusted relationship compromise udpgangster vba macros

Marking (TLP)

TLP:CLEAR

Related entities

Reports and intrusion sets linked to this IOC.

Intrusion sets (2)

  • Boggy Serpens
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 ·
  • MuddyWater Earth VetalaStatic Kitten
    The MITRE Corporation Confidence 100

    [MuddyWater](https://attack.mitre.org/groups/G0069) is a cyber espionage group assessed to be a subordinate element within Iran's Ministry of Intelligence and Security (MOIS).(Citation: CYBERCOM Iranian Intel Cyber January 2022) Since at…

    First seen 01/01/1970 · Last seen 16/11/5138 ·