216.73.217.172

Indicator (IOC)

stix Revoked AlienVault · Published 20/12/2025 19:40 · Modified 21/12/2025 01:33

Essential information

Value / Name
a61b2eafcf39715031357df6b01e85e0d1ea2e8ee1dfec241b114e18f7a1163f
Confidence
100/100
Revoked
Yes
Valid from
13/11/2023 18:29
Valid until
15/02/2025 18:29
Pattern type
stix
Published
20/12/2025 19:40
Modified
21/12/2025 01:33
Author / Source
AlienVault

Description

Rtf.Exploit.CVE_2017_0199-6335035-0

Pattern

[file:hashes.'SHA-256' = 'a61b2eafcf39715031357df6b01e85e0d1ea2e8ee1dfec241b114e18f7a1163f']

Labels / Tags

Labels: c2 ip cta cuba cve-2023-36884 cve202336884 exploit geopolitical conflict hawker industrial spy maldoc microsoft office regdword romcom romcom rat rtf rtf payload smb connection storm-0978 ukraine word document

Marking (TLP)

TLP:CLEAR