ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://85.28.47.4/920475a59bac849d.php.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1288515
IOC: http://85.28.47.4/920475a59bac849d.php
IOC Type :url
Threat Type :botnet_cc
Malware: Stealc
Confidence Level : Confidence level is high (100%)
Is compromised? : False
ASN:AS199785 CHSN-AS
Country:- UA
First seen:2024-06-24 22:55:19 UTC
Last seen:2025-10-03 14:13:36 UTC
UUID:d44e4f69-327c-11ef-8261-42010aa4000a
Reporter abuse_ch
Reward 5 credits from ThreatFox
Tags:Stealc

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2024-06-25 01:05:22 2e1662bc8b93a8cea652f916afa628ce5646e3b62d15cf584188f7df066dca73
2024-06-24 22:55:21 99dfe8a4454f28c944e3c749150aecdaa97e19bcc5a9cf644a509b7eb1d4e50f