ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 45.138.16.142:4782.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1581221
IOC: 45.138.16.142:4782
IOC Type :ip:port
Threat Type :botnet_cc
Malware: Quasar RAT
Malware alias:CinaRAT, QuasarRAT, Yggdrasil
Confidence Level : Confidence level is high (100%)
ASN:AS210558 services-1337-gmbh
Country:- DE
First seen:2025-09-03 20:55:03 UTC
Last seen:2025-09-13 11:43:28 UTC
UUID:43bb8c79-8908-11f0-bfa6-42010aa4000a
Reporter abuse_ch
Reward 10 credits from netresec
Tags:QuasarRAT RAT

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2025-09-03 21:05:07 db728098ee83742156ca473750c72cc14ea5d249cb61a1168009eacbd880c1b3
2025-09-03 21:00:14 a4fe410865c4277efe42382e954fe2f33fd74854662fc575f2e29cd361931f50