ThreatFox IOC Database

You are viewing the ThreatFox database entry for sha256_hash 41f60f2e0085f50be5d165de73bc90affb6f89770d1127a1bb6e19e6fafaf7c6.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1772696
IOC: 41f60f2e0085f50be5d165de73bc90affb6f89770d1127a1bb6e19e6fafaf7c6
IOC Type :sha256_hash
Threat Type :payload
Malware: Cobalt Strike
Malware alias:Agentemis, BEACON, CobaltStrike, cobeacon
Confidence Level : Confidence level is high (90%)
Is compromised? : False
First seen:2026-03-21 08:34:04 UTC
Last seen:never
UUID:d6bf1e79-248b-11f1-9af6-42010aa4000a
Reporter Lenny_3BO
Reward 5 credits from ThreatFox
Tags:AS202412 ClickFix Donut Omegatech shellcode

Avatar
Lenny_3BO
Donut-encrypted shellcode from ClickFix chain. Entropy 7.53, x64 PIC decoder at +0x6BC5. Installs as Your Application.