Authenticate for API access | If you are experiencing issues with receiving data from abuse.ch platforms via API, please ensure your requests are authenticated.
➡️ Read here for more info

ThreatFox Database

Indicators of Compromise (IOCs) on ThreatFox are associated with a certain malware fas. A malware sample can be associated with only one malware family. The page below gives you an overview on indicators of compromise associated with win.brute_ratel_c4.

You can also get this data through the ThreatFox API.

Database Entry


Malware: Brute Ratel C4
Malware alias:BOLDBADGER, BruteRatel
First seen:2022-09-13 04:18:35 UTC
Last seen:2025-07-25 07:03:27 UTC
Number of IOCs:682
Malpedia: https://malpedia.caad.fkie.fraunhofer.de/details/win.brute_ratel_c4

Indicators Of Compromise


The table below shows all indicators of compromise (IOCs) that are associated with this particulare malware family (max 1000).