216.73.216.133

Indicator (IOC)

yara Revoked AlienVault · Published 20/12/2025 19:38 · Modified 20/12/2025 19:38

Essential information

Value / Name
7f90df87bd3d2ff8ca45da15fc14f26a6af33e20
Confidence
100/100
Revoked
Yes
Valid from
11/05/2022 12:00
Valid until
14/08/2023 12:00
Pattern type
yara
Published
20/12/2025 19:38
Modified
20/12/2025 19:38
Author / Source
AlienVault

Description

No description.

Pattern

rule   
    LinuxUnknownCode   
   {   
   strings:   
   $0   
    = {   
   45B80000000048C745C000000000C6459049C6459135C645922AC6459341C6459459C6459562C6459673C6459740C645984CC6459964C6459A61C6459B57C6459C62C6459D73C6459E4FC6459F00488D5590   
   }   
   $1   
    = {   
   6CC6855276FFFF2FC6855376FFFF62C6855476FFFF69C6855576FFFF6EC6855676FFFF3AC6855776FFFF2FC6855876FFFF75C6855976FFFF73C6855A76FFFF72C6855B76FFFF2F   
   }   
   $2   
    = {   
   0345F02D885B95288945F0C14DF0198B45F40145F08B45F48B55F021C28B45F0F7D02345F809C28B85F4FEFFFF8D04020345FC2DAA4838178945FCC14DFC148B   
   }   
   $3   
    = {   
   0345FC2D2AF8C83C8945FCC14DFC178B45F00145FC8B45F48B55FC21C28B45F4F7D02345F009C28B85FCFEFFFF8D04020345F82D79F22A0B8945F8C14DF8128B   
   }   
   $4   
    = {   
   0345F02D9EDAE1098945F0C14DF01B8B45F40145F08B45F88B55F021C28B45F8F7D02345F409C28B8508FFFFFF8D04020345FC2DC04CBF3F8945FCC14DFC178B   
   }   
   $5   
    = {   
   45F42D1231423E8945F4C14DF40A8B45F80145F48B45F88B55F421C28B45F4F7D02345FC09C28B8500FFFFFF8D04020345F02D51F0830A8945F0C14DF0198B45   
   }   
   $6   
    = {   
   FFFF73C68522F9FFFF62C68523F9FFFF69C68524F9FFFF6EC68525F9FFFF2FC68526F9FFFF69C68527F9FFFF70C68528F9FFFF74C68529F9FFFF61C6852AF9FF   
   }   
   condition:   
   any   
   of   
   them   
   }

Labels / Tags

Labels: apt bpf bpfdoor red menshen

Marking (TLP)

TLP:CLEAR