IOC Radar
SHA1MediumSignal 47/100

5177d1c96fc389c6377d4256187f76579cdeb2ed

Location
PeruPeru
First Seen
Apr 16, 2026
Last Seen
Apr 23, 2026
Apr 16
First Seen
76d ago
Apr 23
Last Seen
69d ago
3
Reports
source reports
47%
Confidence
medium
Found in 3 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
SHA-1 Hash
SHA-1 file hash associated with malicious samples.
MISP Category
Artifacts Dropped
Hash Algorithm
SHA1
Confidence
47%
Signal Score
47 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

6 techniques

Feed Intelligence Summary

3 reports47% confidence
3
Source reports
47%
Confidence score
Category tags
checks-user-inputdetect-debug-environmentexploitation activityfile-hashindicatorinjection activityknown-distributormalwareoperating systemoverlaypedllperuprocess injectionremote servicesresearchedsignedsouth americat1021t1021.001t1055t1069.001t1071t1078tor nodevulnerability scanwin32 malwarewindowswindows malware

Activity Timeline

1 total obs
Apr 23Apr 23

Threat Activity Heatmap

· Peak: 2026-04-23
Less
More
Mon
Wed
Fri
Jun
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated

This Indicator of Compromise (IOC) signifies a substantial threat, scoring 46.53, which places it in a critical risk category. Its association with a "Potential RAT" (Remote Access Trojan) suggests a high likelihood of unauthorized remote control over compromised systems. If left unaddressed, such a compromise could enable threat actors to execute arbitrary code, exfiltrate sensitive data, and establish persistent access within the organizational network. The potential impact spans from signific…

Threat ScoreMedium Risk
47
SIGNAL
Signal Score
47%
Confidence
3
Reports
First seenApr 16, 2026
Last seenApr 23, 2026

VirusTotal

Not checked

WHOIS

description
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 months ago · Last seen 2 months ago
Appeared in 3 threat reports