216.73.217.80

Indicator (IOC)

stix Revoked AlienVault · Published 21/12/2025 03:10 · Modified 18/02/2026 20:10

Essential information

Value / Name
18df68d1581c11130c139fa52abb74dfd098a9af698a250645d6a4a65efcbf2d
Confidence
100/100
Revoked
Yes
Valid from
16/10/2024 11:29
Valid until
12/10/2025 19:23
Pattern type
stix
Published
21/12/2025 03:10
Modified
18/02/2026 20:10
Author / Source
AlienVault

Description

SHA256 of c4f1b50e3111d29774f7525039ff7086

Pattern

[file:hashes.'SHA-256' = '18df68d1581c11130c139fa52abb74dfd098a9af698a250645d6a4a65efcbf2d']

Labels / Tags

Labels: browser updates c2 clickfix compromised websites doenerium fake browser updates fake updates github hz hosting ltd information stealer injection law firms living-off-the-land lumma lumma stealer malvertising malware mivocloud multi-stage attack netsupport netsupport rat rat remote administration tools sectoprat spoofing stealc supply-chain attack trojan watering hole wordpress

Marking (TLP)

TLP:CLEAR