216.73.216.226

Indicator (IOC)

stix Revoked AlienVault · Published 20/12/2025 19:57 · Modified 07/06/2026 05:15

Essential information

Value / Name
0b3a08a1d90bf52dbf5379c72b8e2b6e76aa1fbf2c2e6c2d32af99c4707598a7
Confidence
100/100
Revoked
Yes
Valid from
10/06/2025 21:21
Valid until
07/06/2026 05:14
Pattern type
stix
Published
20/12/2025 19:57
Modified
07/06/2026 05:15
Author / Source
AlienVault

Description

Ole2.Macro.Agent-9858864-1 SHA256 of f28d8c5c2283019e6ed788d20240abc8554cadb5

Pattern

[file:hashes.'SHA-256' = '0b3a08a1d90bf52dbf5379c72b8e2b6e76aa1fbf2c2e6c2d32af99c4707598a7']

Labels / Tags

Labels: apt backdoor cyberespionage flog iis module iran iraq kurdistan laret pinar primecache rdat reverse tunnel shahmaran slippery snakelet whisper

Marking (TLP)

TLP:CLEAR

Related entities

Reports and intrusion sets linked to this IOC.

Intrusion sets (1)

  • BladedFeline
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 ·