ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 192.227.246.80:2026.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1604001
IOC: 192.227.246.80:2026
IOC Type :ip:port
Threat Type :botnet_cc
Malware: XWorm
Confidence Level : Confidence level is high (100%)
ASN:AS36352 AS-COLOCROSSING
Country:- US
First seen:2025-09-29 13:35:10 UTC
Last seen:2025-10-03 09:02:35 UTC
UUID:1f0751d7-9d39-11f0-9671-42010aa4000a
Reporter abuse_ch
Reward 50 credits from anonymous
10 credits from netresec
10 credits from akanine1337
10 credits from Saber
Tags:XWorm

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2025-09-30 12:05:12 8fec84a89b21673a5847a3d7e77318d32b96148df87ae04a276faf49bdf4baac
2025-09-30 11:15:11 9a843a46b22077ebb8e5bc72a519bee7c53d928f0ca0f5f1b81067970c3de735
2025-09-30 05:00:54 2df7fd02aa307caadd0b8b1d552f517fc145bd20a50c2944eb7b560cf7198d3e
2025-09-29 13:35:13 48ff684c90327f57cab7557fff141bc906b2deedfb478f8609bc9607883de4ec