216.73.216.36

Indicator (IOC)

stix AlienVault · Published 09/06/2026 10:57 · Modified 09/06/2026 10:59

Essential information

Value / Name
d5e9288693aa745dc89368deac677e7ea1ec81e663283af30838cdae189b7a7e
Confidence
100/100
Revoked
No
Valid from
08/06/2026 12:05
Valid until
04/06/2027 19:59
Pattern type
stix
Published
09/06/2026 10:57
Modified
09/06/2026 10:59
Author / Source
AlienVault

Description

No description.

Pattern

[file:hashes.'SHA-256' = 'd5e9288693aa745dc89368deac677e7ea1ec81e663283af30838cdae189b7a7e']

Labels / Tags

Labels: credential theft cryptocurrency theft developer targeting flexibleferret github repositories invisible ferret north korea ottercookie overlord overlord framework unk_deaddrop visual studio code vsix extensions wallet exfiltration

Marking (TLP)

TLP:CLEAR

Related entities

Reports and intrusion sets linked to this IOC.

Intrusion sets (1)

  • UNK_DeadDrop
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 ·