Essential information

Value / Name

https://upnow-prod.ff45e40d1a1c8f7e7de4e976d0c9e555.r2.cloudflarestorage.com/fnwimqzwkbgtpmknfy9oi9pg4kr2/aac53

Confidence

100/100

Revoked

Yes

Valid from

26/02/2025 11:00

Valid until

14/04/2025 12:00

Pattern type

stix

Published

20/12/2025 19:54

Modified

21/12/2025 12:36

Author / Source

AlienVault

Description

No description.

Pattern

[url:value = 'https://upnow-prod.ff45e40d1a1c8f7e7de4e976d0c9e555.r2.cloudflarestorage.com/fnwimqzwkbgtpmknfy9oi9pg4kr2/aac53']

Labels / Tags

Labels: darkcrystalrat dcrat peaklight rdpwrapper state registers xworm

Marking (TLP)

TLP:CLEAR