IOC Radar
SHA256MediumSignal 29/100

d89bb4b23a67814ef511e4e9dda7ad36fa519a322fa7c25ea451c7dd7ef61e54

First Seen
Jun 13, 2026
Last Seen
Jun 13, 2026
Jun 13
First Seen
10d ago
Jun 13
Last Seen
10d ago
1
Reports
source reports
29%
Confidence
medium
Found in 1 report. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
SHA-256 Hash
SHA-256 file hash — primary identifier for malware samples.
MISP Category
Artifacts Dropped
Hash Algorithm
SHA256
Confidence
29%
Signal Score
29 / 100
IDS Rule
No
Threat Context
Tags

Feed Intelligence Summary

1 report29% confidence
1
Source reports
29%
Confidence score
Category tags
file-hashhashesindicatorresearched

Activity Timeline

1 total obs
Jun 13Jun 13

Threat Activity Heatmap

· Peak: 2026-06-13
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
29
SIGNAL
Signal Score
29%
Confidence
1
Reports
First seenJun 13, 2026
Last seenJun 13, 2026

VirusTotal

Not checked

WHOIS

description
A Malware-as-a-Service (MaaS) campaign using OnyxC2 is being used by threat actors to steal credentials and sensitive data from over 210 applications. The campaign delivers infostealer malware through fake software installers and uses evasion techniques to enable financial fraud and unauthorized access to accounts, systems and crypto assets.

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 10 days ago · Last seen 10 days ago
Appeared in 1 threat report