216.73.217.172

Indicator (IOC)

stix Revoked AlienVault · Published 20/12/2025 19:38 · Modified 20/12/2025 23:59

Essential information

Value / Name
48ae9f16aa87bf92639c24ccfd60b3e06b38560d4aaee158a4e75875e1f23ae6
Confidence
100/100
Revoked
Yes
Valid from
12/04/2023 15:19
Valid until
15/07/2024 15:19
Pattern type
stix
Published
20/12/2025 19:38
Modified
20/12/2025 23:59
Author / Source
AlienVault

Description

Win64:Evo-gen\ [Susp] SHA256 of ca6658852480c70118feba12eb1be880 SHA256 of ca6658852480c70118feba12eb1be880

Pattern

[file:hashes.'SHA-256' = '48ae9f16aa87bf92639c24ccfd60b3e06b38560d4aaee158a4e75875e1f23ae6']

Labels / Tags

Labels: backdoor blindingcan copperhedge deathnote gopuram lazarus macros manuscrypt mimikatz nukesped roaming mantis trojanized pdf ultravnc viewer winrar

Marking (TLP)

TLP:CLEAR

Related entities

No linked attack reports or intrusion sets yet.