216.73.216.6

Indicator (IOC)

stix Revoked AlienVault · Published 21/12/2025 01:56 · Modified 20/02/2026 15:10

Essential information

Value / Name
498ba0afa5d3b390f852af66bd6e763945bf9b6bff2087015ed8612a18372155
Confidence
100/100
Revoked
Yes
Valid from
24/02/2025 07:16
Valid until
20/02/2026 15:10
Pattern type
stix
Published
21/12/2025 01:56
Modified
20/02/2026 15:10
Author / Source
AlienVault

Description

compromised_site_redirector_fromcharcode

Pattern

[file:hashes.'SHA-256' = '498ba0afa5d3b390f852af66bd6e763945bf9b6bff2087015ed8612a18372155']

Labels / Tags

Labels: anydesk abuse citrix bleed confluence credential theft cve-2023-22527 cve20234966 exfiltration lateral movement lockbit ransomware rdp splashtop abuse

Marking (TLP)

TLP:CLEAR

Related entities

Reports and intrusion sets linked to this IOC.

Intrusion sets (1)

  • LockBit
    AlienVault Confidence 100
    First seen 01/01/1970 · Last seen 16/11/5138 ·