IOC LOOKUP
// SEARCH IP, DOMAIN, HASH, OR URL AGAINST OTX THREAT INTELLIGENCE
Indicator of Compromise Search
Bulk Lookup
✦ IPv4 Address ✦ Domain ✦ MD5/SHA1/SHA256 Hash ✦ URL
INDICATOR
2800a10c4afae44978d906b2abaed745
MD5 ⚠ 9 PULSE HITS
↓ CSV ↓ JSON
55
/100
HIGH
CONFIDENCE LEVEL
THREAT CONFIDENCE ANALYSIS
HIGH 55/100 confidence
Strong evidence of malicious activity across multiple sources. Prioritise investigation.
CLEAN LOW MED HIGH CRIT
0 25 50 75 100
OTX
20/30
9 pulses
VIRUSTOTAL
35/35
60/76 detected
ABUSEIPDB
/25
IPv4 only
URLHAUS
0/10
NOT LISTED
General Information
Hash2800a10c4afae44978d906b2abaed745
File TypeFileHash-SHA1
AlienVault OTX Analysis ↗ View on OTX
9
PULSE HITS
Pulse Hits 9
Indicator Type MD5
Threat Level
ASSOCIATED PULSES
PULSE NAMEDATE
Confluence Exploit Leads to LockBit Ransomware 2025-02-24
Cobalt Strike and a Pair of SOCKS Lead to LockBit Ransomware 2025-01-27
Twitter Feed - skocherhan - 24-10-2025 2025-10-25
Intel is bad awy 2025-02-27
Confluence Exploit Leads to LockBit Ransomware 2025-02-25
VirusTotal Analysis ↗ View on VirusTotal
60/76
DETECTIONS
MALICIOUS
Malicious 60
Suspicious 0
Harmless 0
Undetected 12
Reputation -1
File Name 18ckxxwg3.exe
File Type Win32 EXE
File Size 156.5 KB
TOP DETECTIONS
VENDORRESULT
ALYac Gen:Variant.Ransom.BlackMatter.110
APEX Malicious
AVG Win32:Evo-gen [Trj]
AhnLab-V3 Ransomware/Win.LockBit.R506767
Alibaba Ransom:Win32/Lockbit.cc69b216
Antiy-AVL Trojan[Ransom]/Win32.BlackMatter.e
Arcabit Trojan.Ransom.BlackMatter.110
Avast Win32:Evo-gen [Trj]
Avira TR/Crypt.ZPACK.Gen
BitDefender Gen:Variant.Ransom.BlackMatter.110
URLhaus (abuse.ch) ↗ View on URLhaus
✓ NOT LISTED No malicious activity found in URLhaus database.