SHA256MediumSignal 51/100
56c5f221b9a92e42241212e38b3e70afd9d71ab9320251c00144c8d78bba80eb
Location
PeruFirst Seen
Apr 17, 2026
Last Seen
Apr 23, 2026
Found in 3 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
SHA-256 Hash
SHA-256 file hash — primary identifier for malware samples.
MISP Category
Artifacts Dropped
Hash Algorithm
SHA256
Confidence
51%
Signal Score
51 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
3 reports51% confidence
3
Source reports
51%
Confidence score
Category tags
copydeletedetect-debug-environmentfile-hashguardhighindicatormediumoverlaypeexeperureadresearchedsignedsouth americat1010t1018t1027t1036t1047t1055t1056t1057t1070t1071t1082t1083t1095t1497t1518t1547t1562t1573t1574top destinationtop sourcevulnerability scanwindowswriteyara detections
Activity Timeline
Apr 23Apr 23
Threat Activity Heatmap
· Peak: 2026-04-23LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated
This Indicator of Compromise (IOC), a SHA-256 hash, signals the presence of a highly malicious file within the organizational environment. With a risk score of 51.37 and no whitelist status, its detection warrants immediate attention, as it is strongly associated with the DarkGate malware loader. The potential impact of this IOC includes unauthorized system access, data exfiltration, deployment of additional harmful payloads, and overall compromise of network integrity. If left unaddressed, the …
Threat ScoreMedium Risk
51
SIGNAL
Signal Score
51%
Confidence
3
Reports
First seenApr 17, 2026
Last seenApr 23, 2026
VirusTotal
Not checked
WHOIS
- description
- PE32+ executable (console) x86-64, for MS Windows
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 2 months ago · Last seen 1 month ago
Appeared in 3 threat reports