ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 193.161.193.99:53120.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1581222
IOC: 193.161.193.99:53120
IOC Type :ip:port
Threat Type :botnet_cc
Malware: Quasar RAT
Malware alias:CinaRAT, QuasarRAT, Yggdrasil
Confidence Level : Confidence level is elevated (75%)
ASN:AS198134 GETWIFI-AS
Country:- RU
First seen:2025-09-03 21:06:01 UTC
Last seen:2025-09-13 11:43:28 UTC
UUID:cbab4214-8909-11f0-bfa6-42010aa4000a
Reporter abuse_ch
Reward 10 credits from netresec
Tags:quasar
Reference: https://bazaar.abuse.ch/sample/a4fe410865c4277efe42382e954fe2f33fd74854662fc575f2e29cd361931f50/

Avatar
abuse_ch
quasar (aka CinaRAT,QuasarRAT,Yggdrasil) botnet C2