indicatorsha256
92ff08773995ebc8d55ec4b8e1a225d0d1e51efa4ef88b8849d0071230c9645a
- First seen
- 2026-05-13
- Last seen
- 2026-05-13
- Sightings
- 4
Posts referencing this indicator
- Intelligence Center
MacOS RAT payload.
- Mitigating the Axios npm supply chain compromise
macOS native binary RAT payload dropped to /Library/Caches/com.apple.act.mond.
- Inside the Axios supply chain compromise - one RAT to rule them all
macOS stage-2 compiled C++ payload (com.apple.act.mond).
- Elastic releases detections for the Axios supply chain compromise
Hash of com.apple.act.mond, the custom Mach-O macOS backdoor.