TLP:WHITE5 IOCs
Langflow RCE Flaw Exploited to Deploy Monero Cryptominer on AI Servers
Malware Families
Diamond Model
Adversary
Infrastructure(2)
Capability(2)
Victim
5W+H Threat Analysis
Analysis unavailable
Indicators of Compromise
Indicators of Compromise5
| Type | Indicator | Confidence | Score | First Seen |
|---|---|---|---|---|
| CVE | CVE-2026-33017 cryptominerexploitintel-blog | High | 61 | Jun 3, 26 |
| URL | http://83.142.209.214:8080/isp.sh intel-blogmalwarenetwork | High | 58 | Jun 29, 26 |
| CVE | CVE-2025-3248 botnetddosexploit | Medium | 51 | Jun 29, 26 |
| MD5 | 46096a72d84db5f1dafd944fcf6571c8 cryptominerfile-hashintel-blog | Medium | 53 | Jun 29, 26 |
| IP | 83.142.209.214 intel-blogmalwarenetwork | High | 58 | Jun 29, 26 |
IOC Relationship Graph
IOC Relationship Graph5 total IOCs
CVEURLMD5IP