ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 104.21.2.30:80.

Database Entry


IOC ID:87999
IOC: 104.21.2.30:80
IOC Type :ip:port
Threat Type :botnet_cc
Malware: RedLine Stealer
Confidence Level : Confidence level is high (100%)
First seen:2021-06-10 20:26:13 UTC
Last seen:never
UUID:1986b6b8-ca2a-11eb-b17b-42010aa4000a
Reporter @abuse_ch
Reward 5 credits from ThreatFox
Tags:RedLineStealer

Malware Samples


The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2021-06-11 12:35:41 b9f5bca9a22f08aad48674bc42e4eaf72ab8aa3d652ba7a10dc4686b5b183a33
2021-06-11 07:40:54 6c8b67843326b740d17af91ba222e513fb29c45b6decab158009e71f94a8e62a
2021-06-11 06:16:17 47b989b710739b1c88408ca9bf1b4e833cdab68b4c205c5bcbd94bec501c9b80
2021-06-11 06:11:03 a5004ff6ba57491d63f9d4037b08a86d2825bac37bf3246fa7467e0c7e553f86
2021-06-11 02:11:01 5677b9d1528c45370a17cd4b68fc443862d4304ef1bca005c369c8c1d9158a62
2021-06-10 23:06:02 20593dd40ac0559ee48756078596dc482d5c1ee417518988777e34c174c01d3c
2021-06-10 22:20:47 9af78eaab9a5026570cbc435528e33834c63795f882f5407d52a633825ef2578