Malicious SHA-256 file hash 2d0553d5ec80… (OffSeq Mirage)
OffSeq Mirage honeypot sensors observed this SHA-256 file hash 2 time(s) in attacker activity between 2026-07-01 and 2026-07-01. Observed technique: T1105 (Ingress Tool Transfer). Seen from attacker infrastructure in GB. File hashes fingerprint a specific malicious payload (a dropper, web shell, miner, or post-exploitation tool) that was staged or delivered during the attack. Match it against files in your environment and your EDR/AV and threat-intel feeds.
Indicators of Compromise
- hash: 2d0553d5ec80a052c3d670eb42154835dd4e107d7f914b63299c05362d98a74e
Malicious SHA-256 file hash 2d0553d5ec80… (OffSeq Mirage)
Description
OffSeq Mirage honeypot sensors observed this SHA-256 file hash 2 time(s) in attacker activity between 2026-07-01 and 2026-07-01. Observed technique: T1105 (Ingress Tool Transfer). Seen from attacker infrastructure in GB. File hashes fingerprint a specific malicious payload (a dropper, web shell, miner, or post-exploitation tool) that was staged or delivered during the attack. Match it against files in your environment and your EDR/AV and threat-intel feeds.
Indicators of Compromise
Hash
| Value | Description | Copy |
|---|---|---|
hash2d0553d5ec80a052c3d670eb42154835dd4e107d7f914b63299c05362d98a74e | OffSeq Mirage — a malicious file, observed 2026-07-01..2026-07-01, 2× |
Threat ID: 6a4517ed27e9c797198921d1
Added to database: 07/01/2026, 13:36:45 UTC
Last updated: 07/01/2026, 13:36:45 UTC
Views: 1
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.