216.73.216.36

Indicator (IOC)

stix Revoked AlienVault · Published 20/12/2025 19:39 · Modified 21/12/2025 00:46

Essential information

Value / Name
052309916380ef609cacb7bafbd71dc54b57f72910dca9e5f0419204dba3841d
Confidence
100/100
Revoked
Yes
Valid from
23/05/2023 17:39
Valid until
25/08/2024 17:39
Pattern type
stix
Published
20/12/2025 19:39
Modified
21/12/2025 00:46
Author / Source
AlienVault

Description

SHA256 of 7c0e5627fd25c40374bc22035d3fadd8

Pattern

[file:hashes.'SHA-256' = '052309916380ef609cacb7bafbd71dc54b57f72910dca9e5f0419204dba3841d']

Labels / Tags

Labels: apt backdoor bugdrop cloud services cloudwizard commonmagic crypton dboxshell keylogger malware nsis powermagic powershell red stinger redstinger russia ukraine

Marking (TLP)

TLP:CLEAR

Related entities

Reports and intrusion sets linked to this IOC.

Intrusion sets (1)

  • CloudWizard
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 ·