216.73.217.50

Indicator (IOC)

stix AlienVault · Published 14/05/2026 10:41 · Modified 15/06/2026 19:45

Essential information

Value / Name
fe01.co.kr
Confidence
100/100
Revoked
No
Valid from
13/05/2026 18:41
Valid until
08/10/2026 18:36
Pattern type
stix
Published
14/05/2026 10:41
Modified
15/06/2026 19:45
Author / Source
AlienVault

Description

No description.

Pattern

[domain-name:value = 'fe01.co.kr']

Labels / Tags

Labels: anti-vm apt37 chinotto compiled python bytecode dead-drop-resolver deepfake impersonation environment variable obfuscation korean-targeting lnk file lnk-obfuscation narwhalrat pcloud python backdoor python-backdoor rokrat scheduled tasks persistence spear-phishing

Marking (TLP)

TLP:CLEAR