IOC Radar Logo
IOCRadar
IOC Radar Logo
IOCRadar

45d89fe2c554d1dd2ac3a8879965b35ed7e3421f

Suspicious Hash
37.5%
SIGNAL STRENGTHSlightly Noisy
FIRST SEEN2025-03-23 09:30:37
LAST SEEN2025-04-11 08:44:43
CATEGORY
malware
operation system spesific attack(windows os)
medusa ransomware activity
win32 malware
MITRE
T1078 - Valid Accounts
T1005 - Data from Local System
T1105 - Ingress Tool Transfer
T1059 - Command and Scripting Interpreter
T1566 - Phishing
T1562 - Impair Defenses
T1071 - Application Layer Protocol
T1588 - Obtain Capabilities
T1204 - User Execution
T1567 - Account Discovery
TAGS
process injection
remote services
extortion
data encryption
system disruption
distributed attacks
command and control
malicious software
windows malware
vulnerability management
Eye Icon
SOCRadar
AI Insight

The presence of the SHA1 hash 45d89fe2c554d1dd2ac3a8879965b35ed7e3421f indicates a potential compromise involving malware associated with ransomware activity, specifically the Medusa ransomware family. This IOC has been flagged by multiple threat intelligence feeds, including AlienVault Ransomware-Firehol, SOCRadar Threat Exchange Services, and AlienVault OTX Feeds, signifying a high level of confidence in its malicious nature. If this hash is present within the environment, it could indicate a successful malware infection leading to data encryption, system disruption, and potential data exfiltration, requiring immediate investigation and remediation. Furthermore, its association with known phishing campaigns increases the likelihood of initial access via social engineering techniques.

Summary

Hash Type:
sha1
MD5:
-
SHA-1:
-
SHA-256:
-
Files:
PuTTY
File Type:
exe

Top Classifications

Campaign:
-
Industry:
-
Country:
-
Region:
-
Threat Actors:
-
Malware:
-

Feed Sources

Feed Source
Count
Date
AlienVault Ransomware-Firehol
2
2025-03-25
SOCRadar Threat Exchange Services
1
2025-04-11
AlienVault OTX Feeds
1
2025-03-23

Threat Activity Timeline

Last 24 hours
Dormant
Last 7 Days
Dormant
Last Month
Minimal Activity
Last 3 Months
Minimal Activity
Extended Threat Intelligence
Free Trial

Stay ahead with proactive cyber threat warnings

Discover how SOCRadar's all-in-one platform can help protect your digital assets with extended threat intelligence, digital risk protection, and attack surface management.