ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://213.209.150.166/g7hen3xxf/index.php.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1570464
IOC: http://213.209.150.166/g7hen3xxf/index.php
IOC Type :url
Threat Type :botnet_cc
Malware: Amadey
Confidence Level : Confidence level is high (100%)
ASN:AS214943 RAILNET
Country:- US
First seen:2025-08-17 16:34:45 UTC
Last seen:2025-09-13 04:00:26 UTC
UUID:36992cc0-7b79-11f0-b2c6-42010aa4000a
Reporter pitachu
Reward 5 credits from ThreatFox

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2025-08-20 20:30:18 fad2c0e8fe85428933e730f3844b81ecdc8d1ae26737a9dbbb241ae570cee57f
2025-08-17 23:00:36 24c72cc208245c9c804b42446cbd13e78ae6fdb7997237743926b6e17e39f5df