################################################################
# ThreatFox IOCs: recent SHA256 hashes - CSV format            #
# Last updated: 2026-02-01 02:42:20 UTC                        #
#                                                              #
# Terms Of Use: https://threatfox.abuse.ch/faq/#tos            #
# For questions please contact threatfox [at] abuse.ch         #
################################################################
#
# "first_seen_utc","ioc_id","ioc_value","ioc_type","threat_type","fk_malware","malware_alias","malware_printable","last_seen_utc","confidence_level","is_compromised","reference","tags","anonymous","reporter"
"2026-02-01 02:42:20", "1739626", "b8520187ed07a5cb95074111acd6179523fb97aedcd0b156432f7691fcbfebed", "sha256_hash", "payload", "win.asyncrat", "None", "AsyncRAT", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:19", "1739623", "12bba7161d07efcb1b14d30054901ac9ffe5202972437b0c47c88d71e45c7176", "sha256_hash", "payload", "win.grapeloader", "None", "GRAPELOADER", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:18", "1739620", "d44cf4f3954be46e830fb90868e7f741aad5c4681efd79a26462d936d661d2dd", "sha256_hash", "payload", "win.amadey", "None", "Amadey", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:17", "1739617", "2c3f8889c9f5d765632ad91b4cc2a852c54845e143dbd2b68359b6f9cdfd8f99", "sha256_hash", "payload", "win.nightsky", "Night Sky", "NightSky", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:16", "1739614", "c5f526cc62688cf34c49d098dab81e24e4294f832ada57433ef505d5ac6da8f3", "sha256_hash", "payload", "win.nightsky", "Night Sky", "NightSky", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:15", "1739611", "f0eff94e8ed95c8ccb19decb14f7edcf036830502745ec47fd64152e8b6e42b9", "sha256_hash", "payload", "win.coinminer", "None", "Coinminer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:14", "1739608", "8bdd4ed8a2d2745f44f7d1950630926d5c5c52a081f0e2b20a94682463f3611c", "sha256_hash", "payload", "win.socks5_systemz", "None", "Socks5 Systemz", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:14", "1739605", "7f203543c642de5fdc6d9582068c5ba272309017fa4b6911e523365894284fe5", "sha256_hash", "payload", "win.xfilesstealer", "None", " X-Files Stealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:13", "1739602", "6715d8d5f2985ebafd0257ba2e06d757b8f0d65b76314617ea6de9e52cc4be7f", "sha256_hash", "payload", "win.xfilesstealer", "None", " X-Files Stealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:12", "1739599", "d135c2482bc384d3878863d3e87b0e0f078910fa6ce17a93db0e0f899366a5b2", "sha256_hash", "payload", "win.xfilesstealer", "None", " X-Files Stealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:11", "1739596", "6382c42064d364bc19462f8c277d82c03b8eda1b31509c834f0411c8cf7f4455", "sha256_hash", "payload", "win.xfilesstealer", "None", " X-Files Stealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:10", "1739593", "ec5df8e292717758febd62be53bbc1ce7d54709f2efa604741a4d9ba39eea412", "sha256_hash", "payload", "win.xfilesstealer", "None", " X-Files Stealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:09", "1739590", "30d934db3cf20b600d94a87b61625654c6de0ab5a6a23c92495402fdbb51862e", "sha256_hash", "payload", "win.xfilesstealer", "None", " X-Files Stealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:08", "1739587", "72122ae93cedfb91e46dda053604b88bc9013600a46f7857053ddd8a20821310", "sha256_hash", "payload", "win.xfilesstealer", "None", " X-Files Stealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:07", "1739584", "2e481b9e4d30d776715abb6393dcd55ac99a808d9b929f909a8c5d07deb87ce9", "sha256_hash", "payload", "win.xfilesstealer", "None", " X-Files Stealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:06", "1739581", "861b9bce50d31ce29abbd3e3923d78631a94bebad7df408976aeb51296f25627", "sha256_hash", "payload", "win.xfilesstealer", "None", " X-Files Stealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:05", "1739578", "479acf6c5367318dd4c1285cd7c910d54e16372f92caacbe9bbbb72321dd7389", "sha256_hash", "payload", "win.xfilesstealer", "None", " X-Files Stealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:04", "1739575", "e512af88abd3b507426747ba75491f0c0f6798a4e6c717d44cee3de450d09b19", "sha256_hash", "payload", "win.masad_stealer", "None", "Masad Stealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:03", "1739572", "4977999a446adb8831780c2f3aaa46dad084da7969e494ce34085a0832bed2a3", "sha256_hash", "payload", "win.valley_rat", "Winos", "ValleyRAT", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:01", "1739569", "88290313eb4c0239d427acc7adb59b9a36bd3cd545a92e152362b15b4c681b00", "sha256_hash", "payload", "win.nircmd", "None", "NirCmd", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:42:00", "1739566", "95c9eba0b53e4e0e34741871e350bdd1e9f8ff54f72c63004c8854df6955ffd7", "sha256_hash", "payload", "win.asyncrat", "None", "AsyncRAT", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:59", "1739563", "02b93705ddbc4c6c5b293cd48623ef3289bcc5815706a6d693665176918dfe1b", "sha256_hash", "payload", "win.asyncrat", "None", "AsyncRAT", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:58", "1739560", "c3cf0bd8fa3d3f27853901744158b70223382d9b5f5c1d4578f3f4316743db81", "sha256_hash", "payload", "win.vidar", "None", "Vidar", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:58", "1739557", "3d6a09a7027f92acd9cd132f7550835fe17a0c58e8f161ac114cb39b0aa10e3a", "sha256_hash", "payload", "win.purecrypter", "None", "PureCrypter", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:57", "1739554", "0d9949646843d57838274a8dc7c102dcddee46c5d829652f742acc8602e930eb", "sha256_hash", "payload", "win.quasar_rat", "CinaRAT,QuasarRAT,Yggdrasil", "Quasar RAT", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:56", "1739551", "e8607f27adcc7f2d53de718c9989a34e51adabef9a03725c9b90dd5fadd72228", "sha256_hash", "payload", "win.salatstealer", "None", "SalatStealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:55", "1739548", "aa9609826b6fe268a2b6349d64f226af94ff4ea1ce5ba68e14a9aea7ab47127b", "sha256_hash", "payload", "win.gcleaner", "None", "GCleaner", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:54", "1739545", "20bdd8cd7493353efe6e8c94782b0315b68de4d7846ee4ec96cfc4706b4ef1ad", "sha256_hash", "payload", "win.vidar", "None", "Vidar", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:53", "1739542", "4ed8567ea2048af98c1a36219e521df92a9fbba4e1229a3a7d850bd5b6682bbb", "sha256_hash", "payload", "win.vidar", "None", "Vidar", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:52", "1739539", "56010b13ba196204c5a46c63ae4a6e2f2c0b0c9c80ce0621f1724d75acdce4b8", "sha256_hash", "payload", "win.salatstealer", "None", "SalatStealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:51", "1739536", "7fc31b4326e89cb3ed0857f5090d221d7781a8124e230f43dbb0f3aec39fb9c9", "sha256_hash", "payload", "win.vidar", "None", "Vidar", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:50", "1739533", "ffa35e8c18950c68e2888a96c7138493c213c52747a45c5914f468a5ea0acdcc", "sha256_hash", "payload", "win.vidar", "None", "Vidar", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:50", "1739530", "098e0f982f6e766e1f9603075e7b91addf6cd5839ff3bbebae8ec280d2cb2421", "sha256_hash", "payload", "win.vidar", "None", "Vidar", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:49", "1739527", "62b0f6a41b6027c2b82ae449bfef9d8a6f682d77d47f1ee019e701e9d494ec65", "sha256_hash", "payload", "win.asyncrat", "None", "AsyncRAT", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:48", "1739524", "ca04e090471a92350a6b6a3636b7a850036408b989cebf2ff314ee564c0c2419", "sha256_hash", "payload", "win.valley_rat", "Winos", "ValleyRAT", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:47", "1739521", "edb2e646f7d889b6d979f2d5d53c075d2f454860777a91c6619125f95ee7e88f", "sha256_hash", "payload", "win.salatstealer", "None", "SalatStealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:46", "1739518", "74dafa33b566bce5c47eddf84e43718444f6ac55c96941da1824a05c799d5911", "sha256_hash", "payload", "win.salatstealer", "None", "SalatStealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:45", "1739515", "7da382f87aeccf21dd8c656174fdcb66813c6c79305beebffad863eb2159c9b5", "sha256_hash", "payload", "win.salatstealer", "None", "SalatStealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:44", "1739512", "466eaaa3dfa085451b1ddf7455914d2235ffefb763f85afaa630fa7c6d309578", "sha256_hash", "payload", "win.salatstealer", "None", "SalatStealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:43", "1739509", "7c3f488c63c3d29166dcc56d1d6a1fad304933b6c463c660e010cb3825046335", "sha256_hash", "payload", "win.salatstealer", "None", "SalatStealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:42", "1739506", "4ec6916ca3d4f328e21a32cdbaea12c713abeb472544e24226b3260c784775cd", "sha256_hash", "payload", "win.salatstealer", "None", "SalatStealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:42", "1739503", "18c871a4c22e7b1beb5179784418121d92504f952fd5b37fd527d7bb615e32a5", "sha256_hash", "payload", "win.salatstealer", "None", "SalatStealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:41", "1739500", "70aacb6ae4c62d3913af232c5f67f17f532c8379adfa0d1ab0185620fb62627f", "sha256_hash", "payload", "win.darkvision_rat", "None", "DarkVision RAT", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:40", "1739497", "e8d499ad4ca9316f31db2dbd2253cc956a4f77f7e37b8713ea6268681d5ea060", "sha256_hash", "payload", "win.socks5_systemz", "None", "Socks5 Systemz", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:39", "1739494", "af45e7ab9d8c10b174c3ae27c54f39e69311c1716be6af42cc50eaaf96e29710", "sha256_hash", "payload", "win.darktortilla", "None", "DarkTortilla", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:38", "1739491", "5ee01a7ec5257373175090e2bc23fae980ac996325ffa4bffc5bd53164c21d49", "sha256_hash", "payload", "win.valley_rat", "Winos", "ValleyRAT", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:37", "1739488", "8507309e3f00c1258d632b4de937dd9540751e56e6276d7226dd6c916456a763", "sha256_hash", "payload", "win.ghost_rat", "Farfli,Gh0st RAT,PCRat", "Ghost RAT", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:36", "1739485", "3259083a3d9a3b1bb0cc9bbe388537f6fa558329c10984ca296da0eb8e5cf634", "sha256_hash", "payload", "win.salatstealer", "None", "SalatStealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:35", "1739482", "c6f803c1468193c54a22608ac6ff545fcead6788e95d759fd30525eae9b6f67e", "sha256_hash", "payload", "win.socks5_systemz", "None", "Socks5 Systemz", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:34", "1739479", "043411ec48a610695668589c877e96b333b1a7b2ba07304ab0776339edf61cc1", "sha256_hash", "payload", "win.kelihos", "None", "Kelihos", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:33", "1739476", "54193af95cf82cdbcc2b331bfd7112915a54bfd872b4fce2e148777fff41a995", "sha256_hash", "payload", "win.dcrat", "DarkCrystal RAT", "DCRat", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:32", "1739473", "90223a0bf3a14fc840cc51baeced06fd17a7853a52537ab84fbeab4d050e5b90", "sha256_hash", "payload", "win.redline_stealer", "RECORDSTEALER", "RedLine Stealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:32", "1739470", "1dca871a9485fc5e894cdf39e563a36d015823bf4f28bb558ca18dbe7cfec959", "sha256_hash", "payload", "win.quasar_rat", "CinaRAT,QuasarRAT,Yggdrasil", "Quasar RAT", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:31", "1739467", "27c0ef1769c0dec264d62c1fe045295df2ab7db3ee7eddcef84b3b647d55130e", "sha256_hash", "payload", "win.owlproxy", "None", "Owlproxy", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:30", "1739464", "b65e358f50489d16259f50dc37d3f997990b699980798aa5430877603717ec5d", "sha256_hash", "payload", "win.redenergy_stealer", "None", "RedEnergy Stealer", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:29", "1739461", "7798165f2a3542ed381179e299c7b909af9c7cfd4d7c272ef30e5ddf62ecc867", "sha256_hash", "payload", "win.asyncrat", "None", "AsyncRAT", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:28", "1739458", "8a3553c5000a72016304a37d8e403236339db1468fc1e0072bcdc9d7a7849430", "sha256_hash", "payload", "win.stealc", "None", "Stealc", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:27", "1739455", "1475a3bb4ec2d699b19fcc965c7a133dd253fa1e7aa1aed1eb85604315f34882", "sha256_hash", "payload", "win.amadey", "None", "Amadey", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:26", "1739452", "22d77061cbccb048adf52021775abc6a1af7eca93638b6043ad6f560b5e4d423", "sha256_hash", "payload", "win.stealc", "None", "Stealc", "", "95", "False", "None", "None", "0", "Grim"
"2026-02-01 02:41:24", "1739449", "6dfc959713cb5ff03a439ff2df42bb4868a3f3b00fd6aca29be21ad7ebf1afb7", "sha256_hash", "payload", "win.strelastealer", "None", "StrelaStealer", "", "95", "False", "None", "None", "0", "Grim"
# Number of entries: 60