ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 5.175.234.65:7000.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1605424
IOC: 5.175.234.65:7000
IOC Type :ip:port
Threat Type :botnet_cc
Malware: XWorm
Confidence Level : Confidence level is high (100%)
Is compromised? : False
ASN:AS206479 AceRDP
First seen:2025-10-02 03:25:07 UTC
Last seen:never
UUID:64fa2743-9f3f-11f0-9671-42010aa4000a
Reporter abuse_ch
Reward 10 credits from netresec
10 credits from akanine1337
10 credits from Saber
Tags:XWorm

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2025-10-02 16:45:13 f18b0233c29e55e7a391cf7b2d01be7396faf893daf5aa9374f6bf41578e4cd7
2025-10-02 15:25:14 d7dc0f026cb5d7addaed556d654942dd9fd7085782f8ed8290313be67f01d900
2025-10-02 14:30:14 95565b3507424e5c24ea032e13d214ba62969df25c41c878eaf833453cf28a25
2025-10-02 05:35:11 32d826c1a59469515c34e02a2bda606fc3465eb064ece53686bd6572bcdbb650
2025-10-02 04:15:08 0410516aa2f2220e0719e1a2013a0fa5b103b2aca5fdc0f5a64fe01034c6dc19
2025-10-02 03:25:09 ce28ce80d5f620894c987bcbcf86e858fdc5a1635b8e26457cd87ef99999ef4b