ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 130.193.54.53:32750.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-15 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	155836
IOC:	130.193.54.53:32750
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS200350 YandexCloud
Country:	RU
First seen:	2021-06-29 19:31:22 UTC
Last seen:	2023-08-01 17:56:33 UTC
UUID:	95f8cacc-d910-11eb-b17b-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-06-30 08:05:51	5f48c241c815060c266f3ad4eaf267ecb0026af7369a91125b87c7e079ca3aa4
2021-06-30 07:21:10	4015dced57df6b9c89bdc4948d224a4d5b9dcd9c55bde5415ca12c879dca2c46
2021-06-29 23:21:22	3fa48c4223378b5ff4fbcff163b5a0fa89ff6980244cf9aaf01f5793c1ab9724
2021-06-29 22:16:20	3f53579a490ec07fe7518fdbae105b2dd4192e5ca2234af801d7ecfe42be3179
2021-06-29 19:31:24	4d9499d542632ab7a709685646fc0604e1bd6f3899490e37f7f985e2a245c7fc