indicatorsha256
fd65051c61a904a304919c04a8c8633c001183ac73ac461cd4d9057946f02bf5
- First seen
- 2026-05-27
- Last seen
- 2026-05-27
- Sightings
- 1
Posts referencing this indicator
- FortiClient EMS Exploited via CVE-2026-35616 to Deliver EKZ Infostealer Disguised as a Fortinet Patch
FortiEndpoint_Patch.2.4.9.msi hosted on attacker C2.