ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 87.251.71.195:82.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-12 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	153655
IOC:	87.251.71.195:82
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS207883 KDP-TELECOM-AS
Country:	RU
First seen:	2021-06-25 07:16:02 UTC
Last seen:	2023-08-01 18:05:49 UTC
UUID:	32be1fa7-d585-11eb-b17b-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-06-25 23:00:18	64e60caf3b4942d09db9164c8748b7bcd16fa341df00ffa41f6044254b45e568
2021-06-25 19:30:30	6b1901a0869ace34caf5f28585e7b47df631708b16a55e4c9c0f4be765bbbaef
2021-06-25 12:46:01	59b4861575e8fc6183373e223bc070e6ba89357692de09983fb807095aeaa61f
2021-06-25 07:31:24	30c2f230e5401b4b1ea8fb425dadf4e453575884303b9fa2066e6a91859f016e