ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://34.141.128.39/.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-15 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	153871
IOC:	http://34.141.128.39/
IOC Type :	url
Threat Type :	botnet_cc
Malware:	Raccoon
Malware alias:	Mohazo, RaccoonStealer, Racealer, Racoon
Confidence Level :	Confidence level is high (100%)
ASN:	AS396982 GOOGLE-CLOUD-PLATFORM
Country:	US
First seen:	2021-06-25 17:51:09 UTC
Last seen:	never
UUID:	ec869547-d5dd-11eb-b17b-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RaccoonStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-06-26 15:25:11	fc75b1ebbf255dbae145950891fbb58632bed1b0788c4eb9a4bc0021ad79e2d1
2021-06-26 08:40:42	afdbdff7a2510b208b5ebc47ac621ff14a15aa5673ed6cdf7f7f0f8ad4c1e1fb
2021-06-26 06:36:16	12c65e9b2189c8853552288feac6470dcc8ffe458f33c43d95146a420045c7ac
2021-06-25 20:45:41	070c45432f832f1b39c1882b4f5ef8729343f24665b6b5a090ee775dbc116540
2021-06-25 17:51:12	357d37439ca69f878804f0c94fe2694fc6914a1ee61400ee00b839b5eb9245cc