ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://185.79.156.18/bit/03/gate.php.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2026-06-16 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	1124538
IOC:	http://185.79.156.18/bit/03/gate.php
IOC Type :	url
Threat Type :	botnet_cc
Malware:	Pony
Malware alias:	Siplog, Fareit
Confidence Level :	Confidence level is high (100%)
Is compromised? :	False
ASN:	AS58224 TCI
Country:	IR
First seen:	2023-05-31 07:45:27 UTC
Last seen:	never
UUID:	1bef66eb-ff87-11ed-8292-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	Pony

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2023-06-01 06:55:12	c82b062d79bbce1df07ed3dfe3d72faf33edd98a883f36344cc8cd4da9ffa36b
2023-06-01 05:50:10	399ff9fc9b00cd465bf4ebe51c05b2252efd5631afa01d90543aa3ee68e48832
2023-06-01 02:40:17	359085ce4ec341aac7c0d129418e257a0e570f058855a0ddf81a3bbc70bdbe0d
2023-05-31 23:15:17	71e95791dbf20e5b43bb75b1d40de9fe8cc56db5c08f8933f8bc7033765bcb33
2023-05-31 10:15:23	7c4e0b95c73cc6c75ad1c74bc4bb7ea27444015c9934a000cf183eb5d4948a3b
2023-05-31 07:45:29	e80b1723280023b1125b739fcbc94b46da10a4c702c39ca419189d052700d132