IOC LOOKUP
// SEARCH IP, DOMAIN, HASH, OR URL AGAINST OTX THREAT INTELLIGENCE
Indicator of Compromise Search
Bulk Lookup
✦ IPv4 Address ✦ Domain ✦ MD5/SHA1/SHA256 Hash ✦ URL
INDICATOR
ca7138bfe08b480386653072482e58f6c48b05a1e7fb8a82cc042806eae9acc2
SHA256 ⚠ 4 PULSE HITS
↓ CSV ↓ JSON
55
/100
HIGH
CONFIDENCE LEVEL
THREAT CONFIDENCE ANALYSIS
HIGH 55/100 confidence
Strong evidence of malicious activity across multiple sources. Prioritise investigation.
CLEAN LOW MED HIGH CRIT
0 25 50 75 100
OTX
20/30
4 pulses
VIRUSTOTAL
35/35
60/77 detected
ABUSEIPDB
/25
IPv4 only
URLHAUS
0/10
NOT LISTED
General Information
Hashca7138bfe08b480386653072482e58f6c48b05a1e7fb8a82cc042806eae9acc2
File TypeFileHash-SHA256
AlienVault OTX Analysis ↗ View on OTX
4
PULSE HITS
Pulse Hits 4
Indicator Type SHA256
Threat Level
ASSOCIATED PULSES
PULSE NAMEDATE
Operation Cleaver 2014-12-02
“Broken Seal” DocuSign-themed Delivery with Fileless Process Hollowing (Zeppelin/Bloat-A) 2026-02-13
Spam “Broken Seal” DocuSign-themed Delivery w/Fileless Process Hollowing (Zeppelin/Bloat-A) by msudosos 2026-03-22
Spam “Broken Seal” DocuSign-themed Delivery w/Fileless Process Hollowing (Zeppelin/Bloat-A) by msudosos 2026-03-22
VirusTotal Analysis ↗ View on VirusTotal
60/77
DETECTIONS
MALICIOUS
Malicious 60
Suspicious 0
Harmless 0
Undetected 12
Reputation 0
File Name netscp.exe
File Type Win32 EXE
File Size 169.5 KB
TOP DETECTIONS
VENDORRESULT
ALYac Trojan.Agent.Haifa
APEX Malicious
AVG MSIL:Agent-CIU [Trj]
AhnLab-V3 Trojan/Win32.Injector.R127206
Alibaba Backdoor:MSIL/Tzeebot.325640bf
Antiy-AVL Trojan[APT]/Win32.Cleaver
Arcabit Generic.Dacic.46E278B7.A.4A3C4C22
Avast MSIL:Agent-CIU [Trj]
Avira TR/Agent.173568.58
BitDefender Generic.Dacic.46E278B7.A.4A3C4C22
URLhaus (abuse.ch) ↗ View on URLhaus
✓ NOT LISTED No malicious activity found in URLhaus database.