IOC LOOKUP
// SEARCH IP, DOMAIN, HASH, OR URL AGAINST OTX THREAT INTELLIGENCE
Indicator of Compromise Search
✦ IPv4 Address
✦ Domain
✦ MD5/SHA1/SHA256 Hash
✦ URL
INDICATOR
aae70a468ea74b0672caa9fc13ebd201
65
/100
HIGH
CONFIDENCE LEVEL
THREAT CONFIDENCE ANALYSIS
HIGH
65/100 confidence
Strong evidence of malicious activity across multiple sources. Prioritise investigation.
CLEAN
LOW
MED
HIGH
CRIT
0
25
50
75
100
OTX
20/30
6 pulses
VIRUSTOTAL
35/35
56/76 detected
ABUSEIPDB
—/25
IPv4 only
URLHAUS
10/10
LISTED
General Information
| Hash | aae70a468ea74b0672caa9fc13ebd201 |
| File Type | FileHash-MD5 |
AlienVault OTX Analysis
↗ View on OTX
6
PULSE HITS
| Pulse Hits | 6 |
| Indicator Type | MD5 |
| Threat Level |
ASSOCIATED PULSES
| PULSE NAME | DATE |
|---|---|
| 2024-08-13 | |
| 2024-05-14 | |
| 2024-04-15 | |
| 2024-04-15 | |
| 2024-04-15 |
VirusTotal Analysis
↗ View on VirusTotal
56/76
DETECTIONS
MALICIOUS
| Malicious | 56 |
| Suspicious | 0 |
| Harmless | 0 |
| Undetected | 16 |
| Reputation | -1 |
| File Name | TdZ.exe |
| File Type | Win32 EXE |
| File Size | 729.0 KB |
TOP DETECTIONS
| VENDOR | RESULT |
|---|---|
| ALYac | Gen:Variant.lazy.410287 |
| APEX | Malicious |
| AVG | Win32:MalwareX-gen [Klg] |
| AhnLab-V3 | Trojan/Win.KeyloggerX-gen.R611281 |
| Alibaba | TrojanPSW:MSIL/AgentTesla.5a5b9b13 |
| Antiy-AVL | Trojan/MSIL.GenKryptik |
| Arcabit | Trojan.lazy.D642AF |
| Avast | Win32:MalwareX-gen [Klg] |
| Avira | HEUR/AGEN.1378106 |
| BitDefender | Gen:Variant.lazy.410287 |
URLhaus (abuse.ch)
↗ View on URLhaus
⚠ LISTED
URLHAUS
| URLs Found | 2 |
| First Seen | 2023-10-11 |
| Malware | AgentTesla |
| File Type | exe |
ASSOCIATED URLs
| URL | STATUS / TYPE | DATE |
|---|---|---|
| http://185.28.39.18:7777/185.28.39.18/obizx.exe | offline | — |
| http://185.28.39.17:7777/185.28.39.18/obizx.exe | offline | — |