216.73.217.98

Indicator (IOC)

stix Revoked AlienVault · Published 20/12/2025 19:38 · Modified 20/12/2025 23:55

Essential information

Value / Name
http://mkhkjxgchtfgu7uhofxzgoawntfzrkdccymveektqgpxrpjb72oq.zero/cgi-bin/prometei.cgi
Confidence
100/100
Revoked
Yes
Valid from
09/03/2023 19:30
Valid until
25/04/2023 20:30
Pattern type
stix
Published
20/12/2025 19:38
Modified
20/12/2025 23:55
Author / Source
AlienVault

Description

No description.

Pattern

[url:value = 'http://mkhkjxgchtfgu7uhofxzgoawntfzrkdccymveektqgpxrpjb72oq.zero/cgi-bin/prometei.cgi']

Labels / Tags

Labels: mimikatz prometei botnet

Marking (TLP)

TLP:CLEAR

Related entities

No linked attack reports or intrusion sets yet.