SHA256MediumSignal 100/100
877579185a72fbaf1afa78d3c50dbab187780d545d5375ba4c29147083176697
Location
First Seen
Oct 13, 2023
Last Seen
Mar 16, 2026
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
SHA-256 Hash
SHA-256 file hash — primary identifier for malware samples.
MISP Category
Artifacts Dropped
Hash Algorithm
SHA256
Confidence
99%
Signal Score
100 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
7 reports99% confidence
7
Source reports
99%
Confidence score
Category tags
active scanningaliveasiabotnetbrute forcebrute force attackc servercalls-wmichecks-bioschecks-network-adapterscivil servicescommand and controlcommunication technologiescredential accesscredential stuffingcurcorecurkeepcurkeep backdoorcurkeep payloadcurlogdante discoverydata exfiltrationdetect-debug-environmentdistributed attacksfile-hashftp brute forcegovernment technologyindicatorinitial accesskazakhstanlogin attemptlong-sleepsmalicious softwaremalwaremobile carriersmobile networksnetwork activitynetwork intrusionnetwork scanningnetwork securitypassword attacksprocess injectionprotocol exploitationpublic administrationpublic infrastructurepublic policyreconnaissanceregulatory agenciesremote accessremote servicesresearchedsmb brute forcessh attackstayint1021t1021.001t1040t1046t1055t1059t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1110.004t1190t1486t1496t1499.002t1499.003t1563t1565t1589t1595t1595.001t1595.002t1595.003tcp scantelecomtelecom servicestelecommunicationstelnet threattoddycattoolsudp scanuzbekistanvietnamzip
Activity Timeline
Mar 16Mar 16
Threat Activity Heatmap
· Peak: 2026-03-16LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
100
SIGNAL
Signal Score
99%
Confidence
7
Reports
First seenOct 13, 2023
Last seenMar 16, 2026
VirusTotal
Not checked
WHOIS
- description
- Zip archive data, at least v2.0 to extract, compression method=deflate
- references
- https://research.checkpoint.com/2023/stayin-alive-targeted-attacks-against-telecoms-and-government-ministries-in-asia/, Advisory No-ESAF-CDC-SOC-TI-214 Asian Governments and Telecom Giants.pdf
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 2 years ago · Last seen 3 months ago
Appeared in 7 threat reports