NEW | Hunt across all abuse.ch platforms with one simple query - discover if an IPv4 address, domain, URL or file hash has been identified on any platform from a centralized search tool. Test it out here hunting.abuse.ch - and happy hunting 🔍

ThreatFox Database

Indicators of Compromise (IOCs) on ThreatFox are associated with a certain malware fas. A malware sample can be associated with only one malware family. The page below gives you an overview on indicators of compromise associated with win.brute_ratel_c4.

You can also get this data through the ThreatFox API.

Database Entry

Malware: Brute Ratel C4
Malware alias:BOLDBADGER, BruteRatel
First seen:2022-09-13 04:18:35 UTC
Last seen:2025-05-14 20:01:54 UTC
Number of IOCs:612
Malpedia: https://malpedia.caad.fkie.fraunhofer.de/details/win.brute_ratel_c4

Indicators Of Compromise

The table below shows all indicators of compromise (IOCs) that are associated with this particulare malware family (max 1000).