IOC pivotioc · ipv4
188[.]34[.]188[.]7
?? · UnknownRansomHubconfidence · high
RansomHub affiliate staging host serving second-stage payloads (NEWOFFICIALPROGRAMCAUSEOFNEWUPDATE.exe and helper DLLs under /555/) per Table 4 of CISA joint advisory AA24-242A.
- family
- RansomHub
- first seen
- Aug 28, 2024
- publisher
- CISA