ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://ci77996.tw1.ru/79178553.php.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1545048
IOC: http://ci77996.tw1.ru/79178553.php
IOC Type :url
Threat Type :botnet_cc
Malware: DCRat
Malware alias:DarkCrystal RAT
Confidence Level : Confidence level is high (100%)
ASN:AS9123 TimeWeb-AS
Country:- RU
First seen:2025-06-15 12:25:10 UTC
Last seen:never
UUID:c78249a8-49e3-11f0-a7f6-42010aa4000a
Reporter abuse_ch
Reward 5 credits from ThreatFox
Tags:dcrat RAT

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2025-06-15 14:10:15 a11e40b54e8ad5e3d24d075395267181f8cf0e12034bc2d38cfbd8a5dddc2b31
2025-06-15 12:25:14 462662fa78d865d05b8ab25d9e3df1f033d3af7822055deacfcec845c8c7c9d1