ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 185.157.163.140:60875.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1593805
IOC: 185.157.163.140:60875
IOC Type :ip:port
Threat Type :botnet_cc
Malware: XWorm
Confidence Level : Confidence level is high (100%)
ASN:AS42675 OBEHOSTING
Country:- SE
First seen:2025-09-18 05:25:17 UTC
Last seen:never
UUID:dc99b1b9-944f-11f0-bfa6-42010aa4000a
Reporter abuse_ch
Reward 50 credits from anonymous
10 credits from netresec
10 credits from akanine1337
10 credits from Saber
Tags:XWorm

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2025-09-18 15:50:16 bca5317c27eb5f4a7816d00e8a0a20359ec8b72c46be5ad08d7f751583bed1d9
2025-09-18 05:25:19 6b2ef374ac650c3624e17bef81fa74572d4cf67bf815a8927447aba4c5da9d00