IOC LOOKUP
// SEARCH IP, DOMAIN, HASH, OR URL AGAINST OTX THREAT INTELLIGENCE
Indicator of Compromise Search
✦ IPv4 Address
✦ Domain
✦ MD5/SHA1/SHA256 Hash
✦ URL
INDICATOR
5d1822386d4442afee85485de8a6d05ce2957cba609b6e34777f372f59f92339
55
/100
HIGH
CONFIDENCE LEVEL
THREAT CONFIDENCE ANALYSIS
HIGH
55/100 confidence
Strong evidence of malicious activity across multiple sources. Prioritise investigation.
CLEAN
LOW
MED
HIGH
CRIT
0
25
50
75
100
OTX
20/30
4 pulses
VIRUSTOTAL
35/35
58/76 detected
ABUSEIPDB
—/25
IPv4 only
URLHAUS
0/10
NOT LISTED
General Information
| Hash | 5d1822386d4442afee85485de8a6d05ce2957cba609b6e34777f372f59f92339 |
| File Type | FileHash-SHA1 |
AlienVault OTX Analysis
↗ View on OTX
4
PULSE HITS
| Pulse Hits | 4 |
| Indicator Type | SHA256 |
| Threat Level |
ASSOCIATED PULSES
| PULSE NAME | DATE |
|---|---|
| 2024-08-13 | |
| 2024-04-15 | |
| 2023-08-21 | |
| 2023-08-11 |
VirusTotal Analysis
↗ View on VirusTotal
58/76
DETECTIONS
MALICIOUS
| Malicious | 58 |
| Suspicious | 0 |
| Harmless | 0 |
| Undetected | 14 |
| Reputation | -2 |
| File Name | Doomtrain.exe |
| File Type | Win32 EXE |
| File Size | 950.5 KB |
TOP DETECTIONS
| VENDOR | RESULT |
|---|---|
| ALYac | IL:Trojan.MSILZilla.30423 |
| APEX | Malicious |
| AVG | Win32:MalwareX-gen [Trj] |
| AhnLab-V3 | Trojan/Win.Generic.R453252 |
| Alibaba | TrojanPSW:MSIL/Stealer.31d4a1a6 |
| Antiy-AVL | Trojan[PSW]/MSIL.Stealer |
| Arcabit | IL:Trojan.MSILZilla.D76D7 |
| Avast | Win32:MalwareX-gen [Trj] |
| Avira | HEUR/AGEN.1378564 |
| BitDefender | IL:Trojan.MSILZilla.30423 |
URLhaus (abuse.ch)
↗ View on URLhaus
✓ NOT LISTED
No malicious activity found in URLhaus database.