indicatorurl
hxxp://83[.]138[.]53[.]110/dl/p[.]exe
- First seen
- 2026-05-27
- Last seen
- 2026-05-27
- Sightings
- 1
Posts referencing this indicator
- FortiClient EMS Exploited via CVE-2026-35616 to Deliver EKZ Infostealer Disguised as a Fortinet Patch
Download URL for the EKZ Infostealer payload.