ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 65.21.104.217:8847.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2026-01-02 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	115617
IOC:	65.21.104.217:8847
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
Is compromised? :	False
ASN:	AS24940 HETZNER-AS
Country:	DE
First seen:	2021-06-15 08:01:16 UTC
Last seen:	2023-08-01 18:04:15 UTC
UUID:	dc9f7645-cdaf-11eb-b17b-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-06-16 07:05:27	1783f2bfd5814d592a2c85e83cb508f1ea12df3634122c45abc8e766d57a5080
2021-06-16 07:00:30	1fae4803db7da4d39e6ba97239cffc7f6987e307fd00c7751581394c25985067
2021-06-16 06:45:27	655107fc8ec1147d3c1d734c2991b3df1147b6962196b9c3eeb776d3034c37ee
2021-06-15 22:40:56	cbba94a11f16e518cfebe5ab5ac573f336852eafce08bf122e374d6adb57b350
2021-06-15 19:20:52	f3628edc83e0a331119e138491a24f546d6f5bdf3de8a6df38a8088ede5a0186
2021-06-15 17:05:56	bfd0e6229b78543c051d95681df359263ce2bac145ba2b8a9bff59acc701d311
2021-06-15 15:36:10	ccbf1853c703609eda36bc07ab8eb2faf692153b56ecf8cf9155e67e7a460c2c
2021-06-15 14:51:03	7a6db2fb6f1844f2003b1b6d914728331c90c9aab0adda7e75dd13c69c05aa2f
2021-06-15 13:10:54	1a0dd04106a32a7cb062d8294720506f7f84a54c4268e267163e1c43b08d65ff
2021-06-15 12:15:53	365fd289daa60e68b54237aaec835baaf8e2cab5050c7982d2cf6dd7061842d3
2021-06-15 12:05:43	2edde91a2015d578bee82583d6e89a49f9f17fbc6ff8d51771f08a9419a7ea93
2021-06-15 11:00:45	6bb6382059170763745610333f5d787ad85861b750c217e3e04a9142d38af5ae
2021-06-15 10:30:54	8e9364a6a886ed1a6f9f41ee6dc6c6a704d042a64b0fc7137a57502390a7df32
2021-06-15 10:10:40	69de80bd429baa31213095720ab61e8a8ddd60212e735388c4d1af4202e2bd1c
2021-06-15 08:41:01	8a8f2fcbf0fa6b25c104baffe243b23a0b7ee7dd984669584c0118e54d92e39d
2021-06-15 08:40:59	c7dac0da25d58206459be8af996568547c3df0f76149c741e607249af4c47a67