216.73.216.36

Indicator (IOC)

stix Revoked AlienVault · Published 20/12/2025 19:33 · Modified 20/12/2025 19:57

Essential information

Value / Name
http://192.227.196.211/tea_shipping/f_document_shp.doc
Confidence
100/100
Revoked
Yes
Valid from
25/05/2022 16:48
Valid until
11/07/2022 16:48
Pattern type
stix
Published
20/12/2025 19:33
Modified
20/12/2025 19:57
Author / Source
AlienVault

Description

ISO-8859 text, with very long lines, with CRLF, CR, LF line terminators 165305d6744591b745661e93dc9feaea73ee0a8ce4dbe93fde8f76d0fc2f8c3f

Pattern

[url:value = 'http://192.227.196.211/tea_shipping/f_document_shp.doc']

Labels / Tags

Labels: cve201711882 pdf document snake keylogger

Marking (TLP)

TLP:CLEAR

Related entities

No linked attack reports or intrusion sets yet.