IOC Radar
TLP:WHITE3 IOCs

Analysis of the $2.19 Million Asset Theft from Aztec Connect

SL
SlowMist
Published June 15, 2026Original Report

Diamond Model

Attack Flow8 steps · MITRE ATT&CK mapped

Initial AccessTA0001·T1190
1/8
Exploit Public-Facing Application
ActionExploit contract vulnerability
Attacker exploits a vulnerability in the deprecated Aztec Connect RollupProcessor contract.

5W+H Threat Analysis

Analysis unavailable

Indicators of Compromise

Indicators of Compromise3

TypeIndicatorConfidenceScoreFirst Seen
SHA106f585f74e0da633ae813a0f23fb9900b61d0fcd
file-hashindicatorintel-blog
Medium
53
Jun 15, 26
SHA10f18d8b44a740272f0be4d08338d2b165b7edd17
file-hashindicatorintel-blog
Medium
53
Jun 15, 26
SHA1ff1f2b4adb9df6fc8eafecdcbf96a2b351680455
exploitfile-hashintel-blog
Medium
53
Jun 15, 26

IOC Relationship Graph

IOC Relationship Graph3 total IOCs
SHA1
SHA13REPORTAnalysis of the $2.19 Mill
scroll to zoom · drag to pan · click IOC to open