ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 77.223.119.187:5655.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-12 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	1402213
IOC:	77.223.119.187:5655
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RMS
Malware alias:	Gussdoor, Remote Manipulator System, RuRAT
Confidence Level :	Confidence level is high (100%)
ASN:	AS49505 SELECTEL
Country:	RU
First seen:	2025-02-01 17:45:09 UTC
Last seen:	never
UUID:	481cad6c-e0c4-11ef-a83f-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RemoteManipulator

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2025-02-10 05:50:19	3237ff81fe1982520a0bb7675a156a419d3271971a024ae43b3e5aabaf10f6ef
2025-02-02 07:55:11	9e74aec98d3e2b7af6df0ff58ff86e4a1f5f5f1d09705f2a28151e81900d2aa6
2025-02-01 23:55:11	89ba05dd82c47779436799efad2651f54e2823b0606a46e984ee7b17881c97c5
2025-02-01 17:45:12	c42d8d577ec96bccfcb249738c559d47494e7b6de794259663e2c70f7c47bddc