ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 185.198.57.69:80.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-11 01:15:02 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	159867
IOC:	185.198.57.69:80
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS60117 HS
Country:	AE
First seen:	2021-07-12 16:26:42 UTC
Last seen:	never
UUID:	f143348d-e32d-11eb-b17b-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-07-13 13:05:43	3b70b57af7fcdfb9d0c83217e58d6acd5fafe898f11a815b88b444ecfadb57ab
2021-07-13 10:01:53	26751422de10c39d24478c969264b24d0507e8abdfd3091967edd61ab3e2d670
2021-07-13 10:01:50	4f0f79ed4115f930e5f67354d90801965b71a2d8ab86847fc656afe6aed566b7
2021-07-13 08:16:28	0a0101a2b0df24effbb4265898076d01113e9d3d158b70f77e1d9c591e9e6445
2021-07-13 03:26:42	abc845a1bcb5a82c786c55f8f778cef56bcfb4e66eec07172c14fb4cf78dcfcc
2021-07-12 20:26:50	3a9e17be4ef9e2cd297c58f11abcd72f0b3c2c18e9ef581e1990ec9b9dfd6498
2021-07-12 19:12:01	3deefd1f1f776cc14993508ae21a6434b496b48d7c1c85ec892572e2a56473ab
2021-07-12 18:26:43	5ee09d32d03ae2669f924d649e1e4fce02a59d27243413aa8791b1ab3453570e
2021-07-12 17:16:53	40d21df73b2df09dc5485a019259063c7efbeb0d965a392e6c8cbe80b7ea5626