IOC Radar
TLP:WHITE25 IOCs

Argamal: Malware hidden in hentai games

SE
Securelist
Published June 3, 2026Original Report

Diamond Model

SOCIAL AXISTECHNOLOGY AXISADVERSARYunknownINFRASTRUCTURE186.158.223.35asper1.freeddns.orgcountry1.ignorelist.c…CAPABILITYunknownVICTIMunknown
Adversary
Infrastructure(5)
Capability
Victim

5W+H Threat Analysis

Analysis unavailable

Indicators of Compromise

Indicators of Compromise25

TypeIndicatorConfidenceScoreFirst Seen
SHA1e815a9b418d09c2d4bcd074c2c0bc21406eeb22f
exploitfile-hashintel-blog
Medium
53
Jun 3, 26
SHA11405a3c5e0aeb08012484134e16cdec4ab29b4a4
exploitfile-hashintel-blog
Medium
53
Jun 3, 26
SHA1c2d9d48b3b10bd58cdf5df9463e3ffcd60533ff3
exploitfile-hashintel-blog
Medium
53
Jun 3, 26
SHA1ae4601a19d28332a3ec6ac31b385cdf53be53450
exploitfile-hashintel-blog
Medium
53
Jun 3, 26
SHA15f1f3689bcf23de1b280b5f35712946da0f7978f
exploitfile-hashintel-blog
Medium
53
Jun 3, 26
SHA1901cfa97b1baaf908fd4a02bb52d970f576c4193
exploitfile-hashintel-blog
Medium
53
Jun 3, 26
IP186.158.223.35
c2intel-blogmalware
High
69
Jun 3, 26
SHA12423a5bf0fa7cb9ec09211630a5488629499691b
exploitfile-hashintel-blog
Medium
53
Jun 3, 26
SHA102819d200d1424882af81cb504b3e8614b32397a
exploitfile-hashintel-blog
Medium
53
Jun 3, 26
SHA1edce72f59e4c1d136cd1946af70d334c19df858d
aptespionagefile-hash
Medium
53
Jun 3, 26
SHA1dad26f61da7b8bccc78364411812be74c025b475
exploitfile-hashintel-blog
Medium
53
Jun 3, 26
SHA117f8f8f34dfa737f36182fed7ff9e9814a114058
exploitfile-hashintel-blog
Medium
53
Jun 3, 26
SHA1d2cb0d7a9ad2b5d4ea7c2da8aec62beb37cf36d6
exploitfile-hashintel-blog
Medium
53
Jun 3, 26
Domainasper1.freeddns.org
aptc2espionage
High
69
Jun 3, 26
SHA129f1d346a6e71774c7dad25b90f446b2974393df
exploitfile-hashintel-blog
Medium
53
Jun 3, 26
SHA176253fb55aed707440e808ea78e7101318436b1c
exploitfile-hashintel-blog
Medium
53
Jun 3, 26
SHA19803604ec45f31f9ef75bcca1e1310d8ac1fc3a6
exploitfile-hashintel-blog
Medium
53
Jun 3, 26
Domaincountry1.ignorelist.com
intel-blogmalwarenetwork
High
69
Jun 3, 26
Domainwinst0.kozow.com
exploitintel-blogmalware
High
69
Jun 3, 26
SHA1e05f1767c2a337910ed75e90288838d6d0541164
exploitfile-hashintel-blog
Medium
53
Jun 3, 26
SHA1954722b0c9c678b1313d1f8b204e102842dc5889
exploitfile-hashintel-blog
Medium
53
Jun 3, 26
SHA1535f4337f261b6da20a3c614eb13270bed2d533a
exploitfile-hashintel-blog
Medium
53
Jun 3, 26
IP181.116.218.56
indicatorintel-blogmalware
High
69
Jun 3, 26
SHA142add9475e67a1ccc6a6af94b5475d3defc01b85
aptespionagefile-hash
Medium
53
Jun 3, 26
SHA169331cfdac792dc79240e6a6bb6e803eabd70beb
exploitfile-hashintel-blog
Medium
53
Jun 3, 26

IOC Relationship Graph

IOC Relationship Graph25 total IOCs
SHA1IPDomain
SHA120Domain3IP2REPORTArgamal: Malware hidden in
scroll to zoom · drag to pan · click IOC to open