ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 100.97.2.40:4782.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1589084
IOC: 100.97.2.40:4782
IOC Type :ip:port
Threat Type :botnet_cc
Malware: Quasar RAT
Malware alias:CinaRAT, QuasarRAT, Yggdrasil
Confidence Level : Confidence level is elevated (75%)
First seen:2025-09-13 07:05:49 UTC
Last seen:2025-09-17 10:27:42 UTC
UUID:142798d3-9070-11f0-bfa6-42010aa4000a
Reporter abuse_ch
Reward 10 credits from netresec
Tags:quasar
Reference: https://bazaar.abuse.ch/sample/b95360f091412669760e7a6d01981eb192cc1582cf6fdfe51bc25a6bb8edbe29/

Avatar
abuse_ch
quasar (aka CinaRAT,QuasarRAT,Yggdrasil) botnet C2