IOC LOOKUP
// SEARCH IP, DOMAIN, HASH, OR URL AGAINST OTX THREAT INTELLIGENCE
Indicator of Compromise Search
Bulk Lookup
✦ IPv4 Address ✦ Domain ✦ MD5/SHA1/SHA256 Hash ✦ URL
INDICATOR
0bf4d41b44c18c19d1bb4a9327c19abdf3ecb83b
SHA1 ⚠ 14 PULSE HITS
↓ CSV ↓ JSON
30
/100
MEDIUM
CONFIDENCE LEVEL
THREAT CONFIDENCE ANALYSIS
MEDIUM 30/100 confidence
Some evidence of suspicious activity. Further investigation recommended before action.
CLEAN LOW MED HIGH CRIT
0 25 50 75 100
OTX
30/30
14 pulses
VIRUSTOTAL
/35
N/A
ABUSEIPDB
/25
IPv4 only
URLHAUS
0/10
N/A
General Information
Hash0bf4d41b44c18c19d1bb4a9327c19abdf3ecb83b
File TypeFileHash-SHA1
AlienVault OTX Analysis ↗ View on OTX
14
PULSE HITS
Pulse Hits 14
Indicator Type SHA1
Threat Level
ASSOCIATED PULSES
PULSE NAMEDATE
Win.Trojan.Uniblue-9873211-0 (?) -formerly ’Cycbot’ active in Law Firm 2025-06-04
Exploited Host 2025-05-27
Malicious blockade 2025-05-27
Cycbot | Prevents affected individuals from contacting intended entities 2025-05-27
FormBook - moa.moe ??? Pegasus & Brian Sabey Related 2024-09-25
VirusTotal Analysis ↗ View on VirusTotal
⚠ VirusTotal rate limit reached. Try again shortly.