IOC Radar Logo
IOCRadar
IOC Radar Logo
IOCRadar

220e9760a98d5f9aa2d17a1f47a6ac3077ab56ab

Hash
18%
SIGNAL STRENGTHSlightly Noisy
FIRST SEEN2025-03-31 20:28:36
LAST SEEN2025-04-26 19:27:34
CATEGORY
malware
protocol spesific attack(rdp)
operation system spesific attack(windows os)
port scanning and brute force attempts detected
win32 malware
ssh attack
telnet threat
port scanner
MITRE
T1595 - Active Scanning
T1499.002 - Endpoint DoS
T1499.003 - Network DoS
T1496 - Resource Hijacking
T1190 - Exploit Public-Facing Application
T1110.002 - Brute Force
T1076 - Remote Desktop Protocol
T1563 - Remote Services
T1021.001 - Remote Services
T1069.001 - Permission Groups Discovery
TAGS
network security
network scanning
operating system
protocol exploitation
distributed attacks
credential access
active scanning
command and control
credential stuffing
malicious software
Eye Icon
SOCRadar
AI Insight

The presence of the SHA1 hash 220e9760a98d5f9aa2d17a1f47a6ac3077ab56ab is a significant Indicator of Compromise (IOC) indicating potential malware infection or malicious activity within the environment. This IOC, associated with the MeterLoad Trojan and other potentially unwanted software, poses a severe risk due to its capabilities for remote access, data theft, and deployment of further malicious payloads. Its detection necessitates immediate investigation and remediation to prevent further compromise and potential data breaches. The IOC's association with multiple external threat feeds (SOCRadar Threat Exchange Services, AlienVault OTX Feeds) and reported relationships with suspicious files, IP addresses (including ngrok.io related hosts, which can be used for command and control), and malware families underscores the urgency of addressing this finding.

Summary

Hash Type:
sha1
MD5:
-
SHA-1:
-
SHA-256:
-
Files:
8f1016de92d55986d863d9f50b2420d1.virus
File Type:
exe

Top Classifications

Campaign:
-
Industry:
-
Country:
-
Region:
-
Threat Actors:
-
Malware:
-

Feed Sources

Feed Source
Count
Date
SOCRadar Threat Exchange Services
3
2025-04-26
AlienVault OTX Feeds
3
2025-04-26

Threat Activity Timeline

Last 24 hours
Dormant
Last 7 Days
Minimal Activity
Last Month
Minimal Activity
Last 3 Months
Minimal Activity
Extended Threat Intelligence
Free Trial

Stay ahead with proactive cyber threat warnings

Discover how SOCRadar's all-in-one platform can help protect your digital assets with extended threat intelligence, digital risk protection, and attack surface management.