################################################################
# ThreatFox IOCs: recent SHA256 hashes - CSV format            #
# Last updated: 2025-10-19 22:44:56 UTC                        #
#                                                              #
# Terms Of Use: https://threatfox.abuse.ch/faq/#tos            #
# For questions please contact threatfox [at] abuse.ch         #
################################################################
#
# "first_seen_utc","ioc_id","ioc_value","ioc_type","threat_type","fk_malware","malware_alias","malware_printable","last_seen_utc","confidence_level","reference","tags","anonymous","reporter"
"2025-10-19 22:44:56", "1618206", "d60d944168dc37e539abc2c2a0ec0b301bc076d24373d50bc31aaf8c6c3a8967", "sha256_hash", "payload", "win.strelastealer", "None", "StrelaStealer", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:56", "1618209", "07c8a86e797b6ff14abb1f093dd276809d5955b08e8c08d217aafcfe3c3046fc", "sha256_hash", "payload", "win.formbook", "win.xloader", "Formbook", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:55", "1618203", "5e532dc348cea226907ee286cc623670b87c8f642262ea771b226b7b684fc7d9", "sha256_hash", "payload", "win.quasar_rat", "CinaRAT,QuasarRAT,Yggdrasil", "Quasar RAT", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:54", "1618200", "a58c8b458a1e1ea8000fd8314decaf3d28f2883e514cd22f1a2174610941011b", "sha256_hash", "payload", "win.quasar_rat", "CinaRAT,QuasarRAT,Yggdrasil", "Quasar RAT", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:53", "1618197", "99ad8a05662a178655ad915b6c94984303d16aa9499d65a80d7b26bc2d294a7f", "sha256_hash", "payload", "win.quasar_rat", "CinaRAT,QuasarRAT,Yggdrasil", "Quasar RAT", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:52", "1618194", "b89292463a77b0cf81a6f277e1adfb2391d9f45452e7e3d506681d639e3d0ff5", "sha256_hash", "payload", "win.salatstealer", "None", "SalatStealer", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:51", "1618188", "e8caac829b55f23bf9ee8880342a529ae2af9f446f820fec1828645d6d15d9f6", "sha256_hash", "payload", "win.xenorat", "None", "XenoRAT", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:51", "1618191", "e0a444eabd9edbb0a12978aab8b58883fc251f47bbb8a01448962c1bd6a1e5e7", "sha256_hash", "payload", "win.valley_rat", "Winos", "ValleyRAT", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:50", "1618185", "763c4764e5d49c51cab7c9157c42d33a66f25204919de72334e7d533375a58d7", "sha256_hash", "payload", "win.zingo_stealer", "Ginzo", "ZingoStealer", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:49", "1618182", "cabf319baf5f3c955f6e251d101bdc61a1d7c3ced40e3f313c7d43f8571c00dd", "sha256_hash", "payload", "win.hijackloader", "DOILoader,GHOSTPULSE,IDAT Loader,SHADOWLADDER", "HijackLoader", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:48", "1618179", "d8b2e404bea7fea43a3ee579a2b4f823bb5da27a584cfa5b2a57e72527c6c15c", "sha256_hash", "payload", "win.amadey", "None", "Amadey", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:47", "1618173", "32526f3023c6fbb3c066ba43fa26400df8e94f47ec60d996139520443c352bee", "sha256_hash", "payload", "win.xworm", "None", "XWorm", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:47", "1618176", "94fa3ef5e8d5c216b11f1344a61d614b9b970e9e9023fac771a1bb0fe0501cd0", "sha256_hash", "payload", "win.amadey", "None", "Amadey", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:46", "1618170", "66d699c0cc4896d7864f839d77cedfc6b49b6080ee687d7a75be7a1552aad144", "sha256_hash", "payload", "win.asyncrat", "None", "AsyncRAT", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:45", "1618167", "29c0d4984b75249ca32eb674095996913758b9b91746c788db80a419dd984e50", "sha256_hash", "payload", "win.salatstealer", "None", "SalatStealer", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:44", "1618164", "001b0cc8c936c9ae511779738d2ebd5412f03ce656e1fb64151271b2e1908eb6", "sha256_hash", "payload", "win.rhadamanthys", "None", "Rhadamanthys", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:43", "1618161", "8e20a148ccc479c3566dd0ea9c518273f6b4df5e9e2e934468c5bab6f9a1c0eb", "sha256_hash", "payload", "win.stealc", "None", "Stealc", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:42", "1618158", "c17c8b468c08916972bf930c757a555a0620b3800c089872f21bff4678628092", "sha256_hash", "payload", "win.rhadamanthys", "None", "Rhadamanthys", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:41", "1618152", "998cf81f968ac4baf3bd58f4a3fcef2f80f44ff3d9f294a83874ae5389a1868f", "sha256_hash", "payload", "win.luca_stealer", "None", "Luca Stealer", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:41", "1618155", "9de72bbf7efdb9b528351ec7ad706d6197e860a78b2846adf700cbc10d0760fa", "sha256_hash", "payload", "win.redenergy_stealer", "None", "RedEnergy Stealer", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:40", "1618149", "266f6e9f2549af2849ca867871923f1b4b6752247949e095f3b4b6777cafed4c", "sha256_hash", "payload", "win.rhadamanthys", "None", "Rhadamanthys", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:39", "1618146", "cb29310b5e68fa5f5c4aab781924807aea4f10e1d40164892cbf8651abf7bfd7", "sha256_hash", "payload", "win.darktortilla", "None", "DarkTortilla", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:38", "1618143", "5e0a4beb8673b04848cb7fd3a0b7db41e1324a8e61cef35bff881faab222abfc", "sha256_hash", "payload", "win.rhadamanthys", "None", "Rhadamanthys", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:37", "1618140", "7eb16b0b45dab6d07f6b00b20923751acc5313db25c978ee5f5c42317479af3b", "sha256_hash", "payload", "win.darktortilla", "None", "DarkTortilla", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:36", "1618134", "fdb35e60a509a02f08c2d67ad4ff174ad1a84f6afe2ea36613571409f90f5911", "sha256_hash", "payload", "win.rhadamanthys", "None", "Rhadamanthys", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:36", "1618137", "39ac23bb74eee07c11557b58d0c4d484c822064cbedf25fe5f651236059b5e7c", "sha256_hash", "payload", "win.zstealer", "Z*Stealer", "ZStealer", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:35", "1618131", "3bacd9c91287fed6490b9c85a293b8b531339c320d79f6ecda28bf74fb563444", "sha256_hash", "payload", "win.rhadamanthys", "None", "Rhadamanthys", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:34", "1618128", "25509f262052425db2d825c3da7fd1c46fd340f238f2ac5c48ee0182737a6271", "sha256_hash", "payload", "win.quasar_rat", "CinaRAT,QuasarRAT,Yggdrasil", "Quasar RAT", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:33", "1618125", "7a265184b5c9190604f0e8e96584b19208dc9feb6c6cca45eea82852f626a36c", "sha256_hash", "payload", "win.quasar_rat", "CinaRAT,QuasarRAT,Yggdrasil", "Quasar RAT", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:32", "1618122", "ac0ea1bec62ff284b78817402fda9168abf6171bdea078f812c24fb22bfcd311", "sha256_hash", "payload", "win.xworm", "None", "XWorm", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:31", "1618116", "8ccea06cdc1f3cdcfdd0a9fa2b01316d7d42422b84bfa5422feab22a87feb477", "sha256_hash", "payload", "win.xworm", "None", "XWorm", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:31", "1618119", "76d04adae4c3745c6b059e1ce15e58b253257234b9d34ac259f71a7d7259d276", "sha256_hash", "payload", "win.redline_stealer", "RECORDSTEALER", "RedLine Stealer", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:30", "1618113", "691c7411c7a9e418e81f51c34e323735bcc12dd8c21c7a58ee149b588f3d621b", "sha256_hash", "payload", "win.coinminer", "None", "Coinminer", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:29", "1618110", "d3f967529bbb788147ccc894f3b4b55e287ca6b7b964d34e3308cab70d05f64b", "sha256_hash", "payload", "win.xworm", "None", "XWorm", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:28", "1618107", "4a39cdbca98e3fc773ed44303828f250899874260dbd6f20f4deeca32c78e39f", "sha256_hash", "payload", "win.meterpreter", "None", "Meterpreter", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:27", "1618104", "c411f481563dd48db8a218e063da6477062a9cb628d50c666009ad9040dfde21", "sha256_hash", "payload", "win.njrat", "Bladabindi,Lime-Worm", "NjRAT", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:26", "1618101", "58bfa3720639c8e2a31e1e17b8d9ed710725bc1990bc5c654e64f282b7f33eaa", "sha256_hash", "payload", "win.redline_stealer", "RECORDSTEALER", "RedLine Stealer", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:25", "1618098", "efffbda36edcb7d4130f65a57d3966e7694172fb5db37ce48f27849d239066c7", "sha256_hash", "payload", "win.revenge_rat", "Revetrat", "Revenge RAT", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:24", "1618095", "f82213affe81158bcce50557a5668d7938db2b597c630dbc778d816963135223", "sha256_hash", "payload", "win.xworm", "None", "XWorm", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:23", "1618092", "262c9f2d04e3f0321b6a3d6f0695abd34213259de13a5b977d09b5f50d65ccbe", "sha256_hash", "payload", "win.darkcloud", "None", "DarkCloud Stealer", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:22", "1618086", "4a4f79286b9e850bbff6d5c6a7a3ef5b382f241791ade08296d4ee294bda0bb9", "sha256_hash", "payload", "win.rhadamanthys", "None", "Rhadamanthys", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:22", "1618089", "c13e46bb26088adf920ba4108efd64453febec6dbf2d634806b36cb9ae0b8a9a", "sha256_hash", "payload", "win.strelastealer", "None", "StrelaStealer", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:21", "1618083", "78fa4293b7004d035265bd615b0c4676255ccf4e6e579984c0bb47cb28b1524d", "sha256_hash", "payload", "win.rhadamanthys", "None", "Rhadamanthys", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:20", "1618080", "fbe1211fd0df525e49cc2effadab484603bac9b250fb8fef8eb4d1655e56b65f", "sha256_hash", "payload", "win.stealc", "None", "Stealc", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:19", "1618077", "0adc451cc0691b1e3d8a0d05bfd5334d41f19cd7c54dd1d02c40592cdace4f45", "sha256_hash", "payload", "win.rhadamanthys", "None", "Rhadamanthys", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:18", "1618074", "5b36eb63f4519ec3b39981b1e9b5ad10be9ecba8a09b86e87ab41a9a701b9511", "sha256_hash", "payload", "win.gcleaner", "None", "GCleaner", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:17", "1618071", "8a927bcb779dc1d3bdeaf95d39f9c5802e2d649de1577c60adb786f64e888a54", "sha256_hash", "payload", "win.coinminer", "None", "Coinminer", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:16", "1618068", "48faed87423764726e02f5428e32a0e1f735fa4ff3e484823f51d5775b463084", "sha256_hash", "payload", "win.dcrat", "DarkCrystal RAT", "DCRat", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:15", "1618065", "a8ae600d922f800e997019b60fe446a5a4d7b126981791963616bb0e3fa470b5", "sha256_hash", "payload", "win.coinminer", "None", "Coinminer", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:14", "1618059", "4eb9804a8558edab914ee49e62c0335b6bb77df7c2c0e7bcae1d69aa15180e6c", "sha256_hash", "payload", "win.redline_stealer", "RECORDSTEALER", "RedLine Stealer", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:14", "1618062", "d01a2fb66e6de2d079865445e106535c7522dfc1c406de70423221941f2c1793", "sha256_hash", "payload", "win.valley_rat", "Winos", "ValleyRAT", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:13", "1618056", "59cf8092c4041feb9527edb9786a5a77dc261b448ee25bcc9d1dc2f3bbe7a88f", "sha256_hash", "payload", "win.njrat", "Bladabindi,Lime-Worm", "NjRAT", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:12", "1618053", "6c22a1818f78be2dd32749140bfcaa6d930cf94984f1c58a8f21c1a2b0b27e35", "sha256_hash", "payload", "win.remcos", "RemcosRAT,Remvio,Socmer", "Remcos", "", "95", "None", "None", "0", "Grim"
"2025-10-19 22:44:11", "1618050", "7df420f9c3846e357c6667378c6430fb32f9c964f4cc48838e61d2ba1d019519", "sha256_hash", "payload", "win.blackmatter", "None", "BlackMatter", "", "95", "None", "None", "0", "Grim"
"2025-10-19 19:36:46", "1618006", "7a946339439eb678316a124b8d700b21de919c81ee5bef33e8cb848b7183927b", "sha256_hash", "payload", "unknown", "None", "Unknown malware", "", "50", "https://blog.xlab.qianxin.com/apt-stealthserver-en/#ioc", "StealthServer", "0", "juroots"
"2025-10-19 19:36:46", "1618007", "10b54abba525686869c9da223250f70270a742b1a056424c943cfc438c40cc50", "sha256_hash", "payload", "unknown", "None", "Unknown malware", "", "50", "https://blog.xlab.qianxin.com/apt-stealthserver-en/#ioc", "StealthServer", "0", "juroots"
"2025-10-19 19:36:46", "1618008", "ece1620e218f2c8b68312c874697c183f400c72a42855d885fc00865e0ccc1a1", "sha256_hash", "payload", "unknown", "None", "Unknown malware", "", "50", "https://blog.xlab.qianxin.com/apt-stealthserver-en/#ioc", "StealthServer", "0", "juroots"
"2025-10-19 19:36:46", "1618009", "ab85924ba95692995ac622172ed7f2ebc1997450d86f5245b03491422be2f3d6", "sha256_hash", "payload", "unknown", "None", "Unknown malware", "", "50", "https://blog.xlab.qianxin.com/apt-stealthserver-en/#ioc", "StealthServer", "0", "juroots"
"2025-10-19 19:36:46", "1618010", "cf39bb998db59d3db92114d2235770a4a6c9cbf6354462cfedd1df09e60fe007", "sha256_hash", "payload", "unknown", "None", "Unknown malware", "", "50", "https://blog.xlab.qianxin.com/apt-stealthserver-en/#ioc", "StealthServer", "0", "juroots"
"2025-10-19 19:36:45", "1617999", "dc64c34ba92375f8dc8ae8cf90a1f535a0aa5a29fcf965af5ad4982cd16e9d71", "sha256_hash", "payload", "unknown", "None", "Unknown malware", "", "50", "https://blog.xlab.qianxin.com/apt-stealthserver-en/#ioc", "StealthServer", "0", "juroots"
"2025-10-19 19:36:45", "1618000", "8f8da8861c368e74b9b5c1c59e64ef00690c5eff4a95e1b4fcf386973895bef1", "sha256_hash", "payload", "unknown", "None", "Unknown malware", "", "50", "https://blog.xlab.qianxin.com/apt-stealthserver-en/#ioc", "StealthServer", "0", "juroots"
"2025-10-19 19:36:45", "1618001", "6347f46d77a47b90789a1209b8f573b2529a6084f858a27d977bf23ee8a79113", "sha256_hash", "payload", "unknown", "None", "Unknown malware", "", "50", "https://blog.xlab.qianxin.com/apt-stealthserver-en/#ioc", "StealthServer", "0", "juroots"
"2025-10-19 19:36:45", "1618002", "662890bb5baba4a7a9ba718bdedd6991fbf9867c83e676172f5527617e05cafa", "sha256_hash", "payload", "unknown", "None", "Unknown malware", "", "50", "https://blog.xlab.qianxin.com/apt-stealthserver-en/#ioc", "StealthServer", "0", "juroots"
"2025-10-19 19:36:45", "1618003", "264d88624ec527458d4734eff6f1e534fcacb77e5616ae61abed94a941389232", "sha256_hash", "payload", "unknown", "None", "Unknown malware", "", "50", "https://blog.xlab.qianxin.com/apt-stealthserver-en/#ioc", "StealthServer", "0", "juroots"
"2025-10-19 19:36:45", "1618004", "56260e90bba2c50af7c6d82e8656224ece23445f1d76e87a97c938ad9883005f", "sha256_hash", "payload", "unknown", "None", "Unknown malware", "", "50", "https://blog.xlab.qianxin.com/apt-stealthserver-en/#ioc", "StealthServer", "0", "juroots"
"2025-10-19 19:36:45", "1618005", "499f16ed2def90b3d4c0de5ca22d8c8080c26a1a405b4078e262a0a34bcb1e31", "sha256_hash", "payload", "unknown", "None", "Unknown malware", "", "50", "https://blog.xlab.qianxin.com/apt-stealthserver-en/#ioc", "StealthServer", "0", "juroots"
"2025-10-19 19:34:54", "1617994", "964ec70fc2fdf23f928f78c8af63ce50aff058b05787e43c034e04ea6cbe30ef", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:54", "1617995", "d92bb6e47cb0a0bdbb51403528ccfe643a9329476af53b5a729f04a4d2139647", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:54", "1617996", "5dd629b610aee4ed7777e81fc5135d20f59e43b5d9cc55cdad291fcf4b9d20eb", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:54", "1617997", "b912f06cf65233b9767953ccf4e60a1a7c262ae54506b311c65f411db6f70128", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:54", "1617998", "2852770f459c0c6a0ecfc450b29201bd348a55fb3a7a5ecdcc9986127fdb786b", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617976", "a6b736988246610da83ce17c2c15af189d3a3a4f82233e4fedfabdcbbde0cff0", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617977", "74052cf53b45399b31743a6c4d3a1643e125a277e4ddcfcad4f2903b32bc7dc4", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617978", "20bde6276d6355d33396d5ebfc523b4f4587f706b599573de78246811aabd33c", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617979", "e345d793477abbecc2c455c8c76a925c0dfe99ec4c65b7c353e8a8c8b14da2b6", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617980", "96ada593d54949707437fa39628960b1c5d142a5b1cb371339acc8f86dbc7678", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617981", "925e6375deaa38d978e00a73f9353a9d0df81f023ab85cf9a1dc046e403830a8", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617982", "b249814a74dff9316dc29b670e1d8ed80eb941b507e206ca0dfdc4ff033b1c1f", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617983", "9b6fb4c4dd2c0fa86bffb4c64387e5a1a90adb04cb7b5f7e39352f9eae4b93fa", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617984", "d5ead682c9bed748fd13e3f9d0b7d7bacaf4af38839f2e4a35dc899ef1e261e2", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617985", "ece74382ec6f319890e24abbf8e0a022d0a4bd7e0aeaf13c20bab3a37035dcd1", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617986", "2dba8e38ac557374ae8cbf28f5be0541338afba8977fbff9b732dee7cee7b43e", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617987", "11e90765640cbb12b13afa1bcec31f96f50578a5e65e2aa7be24465001b92e41", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617988", "b2245ca7672310681caa52dc72e448983d921463c94cdab0ba9c40ad6b2a58fe", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617989", "c929ee54bdd45df0fa26d0e357ba554ef01159533501ec40f003a374e1e36974", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617990", "c0e3c93c59b45e47dda93438311f50ddb95808fd615a467285c9c359bce02cf0", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617991", "309da3c8422422089b7f9af3b1b3f89e2d5c36e48e4d9d9faa07affb7d9a7b17", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617992", "fdc86a5b3d7df37a72c3272836f743747c47bfbc538f05af9ecf78547fa2e789", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:53", "1617993", "25b1ec4d62c67bd51b43de181e0f7d1bda389345b8c290e35f93ccb444a2cf7a", "sha256_hash", "payload", "unknown_stealer", "None", "Unknown Stealer", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "katz", "0", "juroots"
"2025-10-19 19:34:05", "1617975", "e5daa86418ac444d590a2c693cd7749d87134c47d8e0dbac30c69f23a8e8131f", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617947", "6f7c5bad09698592411560a236e87acae3195031646ff06a24f1cfada6774ba6", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617948", "6aa2989ebb38e77a247318b5a3410b5d4f72b283c7833a0b800ea7d1de84ccc6", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617949", "4c5d7e437f59b41f9f321be8c17ae1f128c04628107a36f83df21b33d12ff8db", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617950", "639eb0d2c2da5487412e7891638b334927232ff270781fad81dc5371f44f7c8e", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617951", "553d76d0c449377be550570e65e2bcae4371964fc3b539a1e1022d80699da5db", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617952", "a7993775f4518c6c68db08e226c11e51f9bc53314e4ff9385269baac582e2528", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617953", "7ddce5be3642b66c7559821e26877c9f0242c748da64b2e68a81844bb1a6b148", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617954", "84e0a543df302b18f1188139160fc5a8bd669da071e492453d5d6756064ee568", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617955", "97b76d61941b790deff9f025dec55484e32ebff32b1b6e173d6fbf42cd8996ef", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617956", "bf6a5e37097330d7d68b6ac3deb6a10a1d3269be575fd51315774d1e7e1eca34", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617957", "a62a81785714844a099a918c66df9367b5eb14df06e589d59bc81f392358c5cc", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617958", "920309f3822f993afeaa8ec70b4ef6b43dd2562be85cc2985efedc6cda2e7578", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617959", "421c4b4b53d291da2b53c068a491b3913d92fe0eb6f330861e7b60f3d9f8eee7", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617960", "87fae395c0e9ce3631dece94971befa578623ff0540d06539f583df921568814", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617961", "4b8bde867c06b617d731ea9e965bf64800330701942324e475b8119352122e7c", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617962", "3c6a8132df3351e2b7d186d0b3f41847e6920ebcb940548e3c9ed274901104c2", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617963", "76cbb0abd9511aab2cc9dda993e3b9ab77afb09d2959f143647065ca47e725cc", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617964", "ed1b4a03595c59e5a90dd4f02f1993a2c5a43ca46a33aab0d15a1bbb1f8b3d30", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617965", "c44bac8b66ad11756b4c5ff3b1cd7e1187c634088f9e7aa2250067033df24e8d", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617966", "63dfdb4927c0bca64f8952904f463330360eb052f2a2a749bf91a851a2be89b4", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617967", "373c820cc395ea5b9c6f38b9470913e6684e8afea59e9dfeb3da490014074bf1", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617968", "b263df6b58c9259000e45a238327de8c07e79f2e7462c2b687c1c5771bac1dd5", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617969", "f05bc36211301087e403df09daa014ea8f04f5bdae5cef75eb866b56b82af2d6", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617970", "c45d3b6d2237fc500688a73d3ba18335d0002917f1a1f09df6934c87deaa097f", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617971", "fcad234dc2ad5e2d8215bcf6caac29aef62666c34564e723fa6d2eee8b6468ed", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617972", "e05b7f44ef8d0b58cfc2f407b84dcff1cb24e0ec392f792a49ad71e7eab39143", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617973", "87c9bede1feac2e3810f3d269b4492fe0902e6303020171e561face400e9bdb4", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:04", "1617974", "c3de728850dc1e777ad50a211a4be212ca6c4ac9d94bf7bb6d5f7fe5f4574021", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:03", "1617940", "4ab4a37db01eba53ee47b31cba60c7a3771b759633717e2c7b9c75310f57f429", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:03", "1617941", "9ae50e74303cb3392a5f5221815cd210af6f4ebf9632ed8c4007a12defdfa50d", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:03", "1617942", "893ee952fa11f4bdc71aee3d828332f939f93722f2ec4ae6c1edc47bed598345", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:03", "1617943", "b60ee1cd3a2c0ffadaad24a992c1699bcc29e2d2c73107f605264dbf5a10d9b6", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:03", "1617944", "0df13fd42fb4a4374981474ea87895a3830eddcc7f3bd494e76acd604c4004f7", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:03", "1617945", "6051384898e7c2e48a2ffb170d71dbf87e6410206614989a037dac7c11b8d346", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
"2025-10-19 19:34:03", "1617946", "01222c6c2dbb021275688b0965e72183876b7adb5363342d7ac49df6c3e36ebe", "sha256_hash", "payload", "unknown_loader", "None", "Unknown Loader", "", "50", "https://unit42.paloaltonetworks.com/phantomvai-loader-delivers-infostealers/", "PhantomVAI", "0", "juroots"
# Number of entries: 125