Essential information

Value / Name

0a78005858bef767b39cfbbeb543a80dfde46807ee75594de77d3ddfe119e8b5

Confidence

100/100

Revoked

No

Valid from

28/04/2026 10:09

Valid until

24/04/2027 18:02

Pattern type

stix

Published

29/04/2026 09:44

Modified

03/06/2026 08:15

Author / Source

AlienVault

Description

Pattern

[file:hashes.'SHA-256' = '0a78005858bef767b39cfbbeb543a80dfde46807ee75594de77d3ddfe119e8b5']

Labels / Tags

Labels: apt-c-13 covert persistence dropbox frozenbarents likho messenger app obfs4 obfs4 obfuscation persistence mechanism sandworm scheduled tasks skycloak spear-phishing spearphishing ssh tunneling telegram tor hidden service tor network

Marking (TLP)

TLP:CLEAR