ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 45.140.147.128:4311.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-11 01:15:02 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	160134
IOC:	45.140.147.128:4311
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS44477 UNKNOWN
Country:	MD
First seen:	2021-07-13 19:01:10 UTC
Last seen:	2023-08-01 18:02:31 UTC
UUID:	afd607f1-e40c-11eb-b17b-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-07-14 13:45:34	374e79d7601a7ccab601d7c64bbffa573a94e0e3cd270c9046156c5025a341e2
2021-07-14 11:00:40	eddbfe52ba633950c388e0303d5a04453f9ba9e3a3cdc60f9a1355707cd209e6
2021-07-14 10:30:39	c436c6b3fef9c92ce0f8edd8e3e1c57875126535997db3e1b0889b5114ec26e8
2021-07-14 00:16:09	1ba812e8f200b18b8f04bf694314c9b5127aa8a3ce5351ac389639fb69d6d528
2021-07-13 23:56:03	0e2cd771a8f6129727797375520c5f316328876a2809efbcb9e684ff6371e4e5
2021-07-13 23:06:00	7c9ea3131c6b467fd36069befea3edf665e11cf8f156c62d52e8ae14d591ddfa
2021-07-13 22:31:02	813ffce8015db19d68dfdaf4e6dc901b2430b13d7d7683794d008b2b30926cad
2021-07-13 21:46:16	a16ed450732a91d7e929fa2ff06158c7160e3201123469e99abc0bd026dad44f
2021-07-13 19:01:12	45353f79c8ff44867c74c342072bf6437f17d1b158e0ac19b3b0add1e8fb38c9