ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 5.231.25.213:7000.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1573364
IOC: 5.231.25.213:7000
IOC Type :ip:port
Threat Type :botnet_cc
Malware: XWorm
Confidence Level : Confidence level is high (100%)
ASN:AS209874 TECHTIDE
Country:- PT
First seen:2025-08-24 01:25:20 UTC
Last seen:never
UUID:3367a9d2-8089-11f0-bfa6-42010aa4000a
Reporter abuse_ch
Reward 50 credits from anonymous
10 credits from 01Xyris
50 credits from anonymous
10 credits from netresec
10 credits from akanine1337
10 credits from Saber
Tags:XWorm

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2025-08-24 01:35:24 c8874e9004498cdb435503b4de3b383b58f47770c159980c452cece14dceaf39
2025-08-24 01:30:25 6d22873af2e97b169882a723b167759e1c7f7b4952c3c015c58cf83a80e5b19b