IOC Radar
MD5HighVerifiedSignal 93/100

5958eaa29057a92954253606d0d0d340

First Seen
Jan 27, 2026
Last Seen
Jun 1, 2026
Jan 27
First Seen
137d ago
Jun 1
Last Seen
12d ago
6
Reports
source reports
93%
Confidence
high
Found in 6 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
MD5 Hash
MD5 file hash associated with malicious samples.
MISP Category
Artifacts Dropped
Hash Algorithm
MD5
Confidence
93%
Signal Score
93 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

26 techniques

Feed Intelligence Summary

6 reports93% confidence
6
Source reports
93%
Confidence score
Category tags
abusealienvault_ransomwarebad reputationbotnetbotnet activitycommandcommand and controlcontainer securitycontrolcryptocurrencycryptominingdata exfiltrationdata store exposureddosddos attacksdetect-debug-environmentdistributed attackselfexecutable fileexploitexploitation activityfile-hashindicatorinjection activityinternet of thingsiot botnetiot securityiot/ics attackkuberneteslinuxmalicious softwaremalwaremetro4shellmirai botnetpeer-to-peerprocess injectionransomwareredis exploitationresearchedservicet1010t1027t1027.002t1036t1053t1055t1059.004t1070t1071.001t1071.004t1090.001t1098t1105t1110.001t1133t1190t1486t1496t1498t1499.002t1499.003t1552.001t1563t1565t1571t1573targeting databasetrojan:linux/coinminer.c12vulnerability scan

Activity Timeline

1 total obs
Jun 1Jun 1

Threat Activity Heatmap

· Peak: 2026-06-01
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated

This Indicator of Compromise (IOC) represents a significant threat, identified as an MD5 hash with a high severity score of 92.58. Its presence in an organizational environment suggests a severe compromise, potentially linked to sophisticated malware families like P2pinfect and Mirai. P2pinfect is known for its role in Kubernetes compromises, indicating a risk of advanced, multi-stage attacks targeting containerized environments, while Mirai is notorious for establishing IoT botnets capable of l…

Threat ScoreHigh Risk
93
SIGNAL
Signal Score
93%
Confidence
6
Reports
First seenJan 27, 2026
Last seenJun 1, 2026
Verified IOC

VirusTotal

Not checked

WHOIS

description
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=86cd01d411b39cba124c76b76058470ae5955977, for GNU/Linux 3.2.0, stripped
references
https://www.fortinet.com/blog/threat-research/misconfigured-enrolled-and-dormant-anatomy-of-a-p2pinfect-kubernetes-compromise, IOCs-MAY2.csv, https://darfe.es/ciberwiki/index.php?title=Mirai, https://www.virustotal.com/gui/collection/8b6c8d2f11238971579bf5dfefe4bcbca4a616b60d196d0f3867673e7d3c717c/iocs

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 4 months ago · Last seen 12 days ago
Appeared in 6 threat reports