ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 185.69.55.138:80.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-11 01:15:02 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	160166
IOC:	185.69.55.138:80
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS212531 Interneto-vizija
Country:	LT
First seen:	2021-07-13 20:30:46 UTC
Last seen:	never
UUID:	342b7f04-e419-11eb-b17b-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-07-14 17:55:31	356e6444780389e9a1432eb575cea622a01bab5d8331f1c3b13046ca8209d06b
2021-07-14 15:00:40	0ef2423530764d0f9a745e60c251176c903929d958ce3ff1c22a6867c97bbc13
2021-07-14 14:40:45	416a5680b7a1bb7ade8ed80b8002ee97e801a98aef49f3dc214d5acbdda14819
2021-07-14 13:45:44	374e79d7601a7ccab601d7c64bbffa573a94e0e3cd270c9046156c5025a341e2
2021-07-14 07:36:04	f2c8546e61ac6f18f9d739a31134c3d47612059d16201d871d260449fe37e20c
2021-07-14 00:16:15	1ba812e8f200b18b8f04bf694314c9b5127aa8a3ce5351ac389639fb69d6d528
2021-07-13 23:50:53	0e2cd771a8f6129727797375520c5f316328876a2809efbcb9e684ff6371e4e5
2021-07-13 22:31:07	813ffce8015db19d68dfdaf4e6dc901b2430b13d7d7683794d008b2b30926cad
2021-07-13 21:46:19	a16ed450732a91d7e929fa2ff06158c7160e3201123469e99abc0bd026dad44f