216.73.216.226

Indicator (IOC)

stix Revoked AlienVault · Published 20/12/2025 19:38 · Modified 20/12/2025 21:29

Essential information

Value / Name
fd1b20ee5bd429046d3c04e9c675c41e9095bea70e0329bd32d7edd17ebaf68a
Confidence
100/100
Revoked
Yes
Valid from
02/08/2022 10:59
Valid until
05/11/2023 09:59
Pattern type
stix
Published
20/12/2025 19:38
Modified
20/12/2025 21:29
Author / Source
AlienVault

Description

ELF:Agent-AXJ\ [Trj]

Pattern

[file:hashes.'SHA-256' = 'fd1b20ee5bd429046d3c04e9c675c41e9095bea70e0329bd32d7edd17ebaf68a']

Labels / Tags

Labels: apt backdoor bpf bpfdoor linux red menshen

Marking (TLP)

TLP:CLEAR

Related entities

Reports and intrusion sets linked to this IOC.

Intrusion sets (1)

  • Red Menshen
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 ·