ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 147.185.221.30:38215.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1561247
IOC: 147.185.221.30:38215
IOC Type :ip:port
Threat Type :botnet_cc
Malware: XWorm
Confidence Level : Confidence level is high (100%)
Is compromised? : False
ASN:AS400519 PLAYIT-GG
Country:- US
First seen:2025-07-27 18:55:21 UTC
Last seen:never
UUID:3f32bb7a-6b1b-11f0-851c-42010aa4000a
Reporter abuse_ch
Reward 50 credits from anonymous
10 credits from 01Xyris
50 credits from anonymous
10 credits from netresec
Tags:XWorm

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2025-07-27 19:35:23 73937a2cf666dac3c31b8b78f5e9fb803a5a7ff482d2f9bcf4cdf00b1b32f7ce
2025-07-27 18:55:23 8174c657b304d3e67522a5b1995486245deeff57b36643b3ac2ab1f956c11755