MD5HighVerifiedSignal 88/100
eddda4ccf35d420aaac62d5a8e84f050
First Seen
May 24, 2026
Last Seen
Jun 2, 2026
Found in 5 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
MD5 Hash
MD5 file hash associated with malicious samples.
MISP Category
Artifacts Dropped
Hash Algorithm
MD5
Confidence
88%
Signal Score
88 / 100
IDS Rule
No
Threat Context
Tags
Feed Intelligence Summary
5 reports88% confidence
5
Source reports
88%
Confidence score
Category tags
armbotnetbotnet activitycontainer securitycryptocurrencycryptominingdetect-debug-environmentelfexecutable fileexploitation activityfile-hashindicatorkuberneteslinuxmetro4shellpeer-to-peerransomwareredis exploitationresearchedtargeting databasevulnerability scan
Activity Timeline
Jun 2Jun 2
Threat Activity Heatmap
· Peak: 2026-06-02LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated
This Indicator of Compromise (IOC), an MD5 hash, carries significant weight due to its high severity score of 88.28 and confirmed malicious associations, indicating a critical threat to organizational assets. Its presence strongly suggests potential system compromise, leading to data exfiltration, the establishment of botnet capabilities, or the deployment of further destructive malware. Such an incident could result in substantial operational disruption, severe reputational damage, and signific…
Threat ScoreHigh Risk
88
SIGNAL
Signal Score
88%
Confidence
5
Reports
First seenMay 24, 2026
Last seenJun 2, 2026
Verified IOC
VirusTotal
Not checked
WHOIS
- description
- ELF 32-bit LSB executable, ARM, version 1 (ARM), statically linked, stripped
- references
- https://www.fortinet.com/blog/threat-research/misconfigured-enrolled-and-dormant-anatomy-of-a-p2pinfect-kubernetes-compromise, IOCs-MAY2.csv
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
highFirst detected 21 days ago · Last seen 12 days ago
Appeared in 5 threat reports