ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 132.145.75.68:1878.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1582855
IOC: 132.145.75.68:1878
IOC Type :ip:port
Threat Type :botnet_cc
Malware: XWorm
Confidence Level : Confidence level is high (100%)
ASN:AS31898 ORACLE-BMC-31898
Country:- US
First seen:2025-09-06 18:30:34 UTC
Last seen:never
UUID:9379ef71-8b4f-11f0-bfa6-42010aa4000a
Reporter abuse_ch
Reward 10 credits from 01Xyris
50 credits from anonymous
10 credits from netresec
10 credits from akanine1337
10 credits from Saber
Tags:XWorm

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2025-09-07 01:40:18 f03cc966d2abcece5e21a8c90cb2ae5472971202377c59187821f3188012d992
2025-09-07 01:35:19 68a367884639037f1e1e7619df3ae3fcc6177034e8bd3d0da2f62383762b3dc8
2025-09-06 21:20:38 b641d47cd7188049c6a4cc259919d95d84205f4d4e6b32d5580b1c462a87cf30
2025-09-06 18:30:36 45ba32fcb65201e7cae3d05f77178e08fd41380624edd777e355c63ac1d126b7