IOCs · Astaroth · threatengine.sh

IOCs

Indicators for Astaroth

5 indicators · scoped to malware families · back to Astaroth

Live IOCs from URLhaus, ThreatFox, MalwareBazaar, and abuse.ch SSLBL for malware families this tool uses. All indicators are defanged for safe handling.

⚠

Indicators

5 of 5

sslbl_sha1

4fd73d3921ff83cf350667813040a50f53198e59

family Guildma source sslbl first seen 2026-04-15 07:10:10

VirusTotal OTX

url

hxxps://stawel.terrae.rest/?1/_x

family Astaroth source urlhaus first seen 2026-04-09 14:56:10 UTC

VirusTotal urlscan OTX URLhaus Pulsedive

sslbl_sha1

36a986253d83188ceb6ec2273420bfe357074763

family Guildma source sslbl first seen 2026-01-06 15:31:12

VirusTotal OTX

sslbl_sha1

ad6e2e21ac68c72c8c702a51c4a6578277c15c0c

family Guildma source sslbl first seen 2025-12-30 15:15:02

VirusTotal OTX

sslbl_sha1

a2b084523a20c4d3aa3b67c6bd4811d55c93bb97

family Guildma source sslbl first seen 2025-10-24 06:31:18

VirusTotal OTX

Showing 1-5 of 5

Prev 1 Next

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin