ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://85.28.47.30/920475a59bac849d.php.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-16 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	1294769
IOC:	http://85.28.47.30/920475a59bac849d.php
IOC Type :	url
Threat Type :	botnet_cc
Malware:	Stealc
Confidence Level :	Confidence level is high (100%)
ASN:	AS199785 CHSN-AS
Country:	UA
First seen:	2024-07-05 13:30:40 UTC
Last seen:	never
UUID:	c5c8578e-3ad2-11ef-8261-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	Stealc

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2024-07-05 16:35:15	441f614bb8a71a458b9f8274f807c33550d0a91304b7b1bc25c23c6cd8d9b616
2024-07-05 13:30:45	8e7963520355e4078e56aa0cbb4b38d6ca934a05ae11005a396ff917991116ff
2024-07-05 13:30:42	d06e1fd08af8234eb7d356343329905327126518eea8bee8e00f10aeaf7d3a09
2024-07-05 13:30:42	d64aab9e3aa0e3f707bfff0b1179a3d4f1bf4e7335c922a85181f8b3c05e7bd5
2024-07-05 13:30:42	ce21a22b3d7427ebb8a02ad8fc8df36c07005afc359a5402a16a66862d91fc14
2024-07-05 13:30:41	31cbdcdb540d6bc6fbc616c288f6f7ad7c74fe74eff55a135dafc31853b76126
2024-07-05 13:30:41	9f5b516487cc6c3218efb06cb2ebcc72ce724dc64aa84d217464af873c048b7a