IOC LOOKUP
// SEARCH IP, DOMAIN, HASH, OR URL AGAINST OTX THREAT INTELLIGENCE
Indicator of Compromise Search
✦ IPv4 Address
✦ Domain
✦ MD5/SHA1/SHA256 Hash
✦ URL
INDICATOR
d8090f5058db31956d0503d0e4c9e16504d58623ba481715609a8ff1303d6e72
65
/100
HIGH
CONFIDENCE LEVEL
THREAT CONFIDENCE ANALYSIS
HIGH
65/100 confidence
Strong evidence of malicious activity across multiple sources. Prioritise investigation.
CLEAN
LOW
MED
HIGH
CRIT
0
25
50
75
100
OTX
20/30
3 pulses
VIRUSTOTAL
35/35
57/76 detected
ABUSEIPDB
—/25
IPv4 only
URLHAUS
10/10
LISTED
General Information
| Hash | d8090f5058db31956d0503d0e4c9e16504d58623ba481715609a8ff1303d6e72 |
| File Type | FileHash-MD5 |
AlienVault OTX Analysis
↗ View on OTX
3
PULSE HITS
| Pulse Hits | 3 |
| Indicator Type | SHA256 |
| Threat Level |
ASSOCIATED PULSES
| PULSE NAME | DATE |
|---|---|
| 2025-11-10 | |
| 2025-11-25 | |
| 2024-08-13 |
VirusTotal Analysis
↗ View on VirusTotal
57/76
DETECTIONS
MALICIOUS
| Malicious | 57 |
| Suspicious | 0 |
| Harmless | 0 |
| Undetected | 15 |
| Reputation | -3 |
| File Name | chisel.exe |
| File Type | Win32 EXE |
| File Size | 8795.0 KB |
TOP DETECTIONS
| VENDOR | RESULT |
|---|---|
| ALYac | Application.Generic.3957432 |
| AVG | Win64:Malware-gen |
| Alibaba | HackTool:Win64/Chisel.9fa35622 |
| Antiy-AVL | HackTool/Win32.Chisel |
| Arcabit | Application.Generic.D3C62B8 |
| Avast | Win64:Malware-gen |
| Avira | HEUR/AGEN.1379723 |
| BitDefender | Application.Generic.3957432 |
| Bkav | W32.Common.2BAA63CE |
| CAT-QuickHeal | Trojan.Ghanarava.1712068282c8965a |
URLhaus (abuse.ch)
↗ View on URLhaus
⚠ LISTED
URLHAUS
| URLs Found | 8 |
| First Seen | 2024-06-27 |
| File Type | exe |
ASSOCIATED URLs
| URL | STATUS / TYPE | DATE |
|---|---|---|
| http://109.230.231.37:9999/chisel.exe | offline | — |
| http://109.230.231.29:8888/chisel.exe | offline | — |
| http://109.230.231.29:8888/chisel_server.exe | offline | — |
| http://64.226.121.55:8000/chisel.exe | offline | — |
| http://82.147.85.52/chisel.exe | offline | — |