ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 5.182.206.88:6000.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1578903
IOC: 5.182.206.88:6000
IOC Type :ip:port
Threat Type :botnet_cc
Malware: XWorm
Confidence Level : Confidence level is moderate (50%)
ASN:AS213250 ITP-SOLUTIONS
Country:- DE
First seen:2025-09-01 05:55:54 UTC
Last seen:2025-09-13 11:43:50 UTC
UUID:4a131312-86af-11f0-bfa6-42010aa4000a
Reporter pitachu
Reward 50 credits from anonymous
10 credits from 01Xyris
50 credits from anonymous
10 credits from netresec
10 credits from akanine1337
10 credits from Saber

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2025-09-01 06:01:03 fdd9b8a561ea13bcc3bb76a198a9eacdc3353f9d15fad6fd842addf4209f2c7f
2025-09-01 06:01:01 efffbd068814fdcfdcb8d61d6df29103701e128d88bcee3d4d0ab6ccc088b534
2025-09-01 06:00:58 7f24166ed9844558a6bf6ed90b68fdc313d88ee09769492c6b4a6d21fee21c55
2025-09-01 06:00:55 143725672e998c00212167dca6a6c6221f0ecb01d3b28caa21dc9a6f17870f0f