← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
IOC - CloudZ RAT potentially steals OTP messages using Pheno plugin
WHITE celestre 2026-05-07 Modified: 2026-05-07
8
IOCs
LOW VOLUME
cloudzpheno
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
CloudZ Pheno
Indicators of Compromise (5 / 8 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 IPv4
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA256 24398b75be2645e6c695e529e62e60deb418143a4bbea13c561d3c361419eb54 2026-05-07
FileHash-SHA256 33af554562176eff34598a839051b8e91692b0305edfdbb4d8eb9df0103ffd98 2026-05-07
FileHash-SHA256 5b7284bcf30569ae400e416a62391720cc9081e6047f15816f9d1a04a06eb321 2026-05-07
FileHash-SHA256 65fcd965040fabeb6f092df0a4b6856125018bb3b6a1876342da458139f77dac 2026-05-07
FileHash-SHA256 ed5de036edbbda52ab0049d2163607038d38a49404a46b6bcfc4bac26b743832 2026-05-07
References (1)
↗ https://blog.talosintelligence.com/cloudz-pheno-infostealer/