IOC Radar Logo
IOCRadar
IOC Radar Logo
IOCRadar

01097b38a0f49397e023987e2186b986a1ecec00c3a2e6442db06e637b5a9b11

Hash
18%
SIGNAL STRENGTHQuiet
FIRST SEEN2025-03-26 02:43:15
LAST SEEN2025-04-26 16:55:46
CATEGORY
malware
region spesific attack(europe)
operation system spesific attack(windows os)
win32 malware
data leak - election data
MITRE
T1069.001 - Permission Groups Discovery
T1078 - Valid Accounts
T1496 - Resource Hijacking
T1566 - Phishing
T1190 - Exploit Public-Facing Application
T1003 - OS Credential Dumping
T1055 - Process Injection
T1486 - Data Encrypted for Impact
T1565 - Data Manipulation
T1071.001 - Web Protocol
TAGS
credential theft
malicious software
process injection
regional security
eu cyber policies
distributed attacks
command and control
vulnerability management
windows malware
operating system
Eye Icon
SOCRadar
AI Insight

The SHA-256 hash 01097b38a0f49397e023987e2186b986a1ecec00c3a2e6442db06e637b5a9b11 is a critical Indicator of Compromise (IOC) due to its association with potentially malicious files, including components resembling legitimate software and possible malware droppers. The presence of this hash within the environment suggests a potential malware infection or an active intrusion attempt. Its relevance is heightened by its association with the REvil ransomware, a known threat actor infamous for data exfiltration and encryption, leading to significant operational disruption and financial loss. This IOC warrants immediate attention to prevent or mitigate potential ransomware attacks and data breaches.

Summary

Hash Type:
sha256
MD5:
-
SHA-1:
-
SHA-256:
-
Files:
microstub.exe
File Type:
exe

Top Classifications

Campaign:
-
Industry:
-
Country:
-
Region:
-
Threat Actors:
-
Malware:
-

Feed Sources

Feed Source
Count
Date
SOCRadar Threat Exchange Services
1
2025-04-26
AlienVault OTX Feeds
4
2025-04-26

Threat Activity Timeline

Last 24 hours
Dormant
Last 7 Days
Minimal Activity
Last Month
Minimal Activity
Last 3 Months
Minimal Activity
Extended Threat Intelligence
Free Trial

Stay ahead with proactive cyber threat warnings

Discover how SOCRadar's all-in-one platform can help protect your digital assets with extended threat intelligence, digital risk protection, and attack surface management.