ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 107.173.221.187:8443.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1617174
IOC: 107.173.221.187:8443
IOC Type :ip:port
Threat Type :botnet_cc
Malware: Cobalt Strike
Malware alias:Agentemis, BEACON, CobaltStrike, cobeacon
Confidence Level : Confidence level is elevated (75%)
ASN:AS36352 AS-COLOCROSSING
Country:- US
First seen:2025-10-17 09:25:17 UTC
Last seen:never
UUID:aed0ef5a-ab37-11f0-894e-42010aa4000a
Reporter threatquery
Reward 10 credits from anonymous
Tags:AS36352 c2 Cobalt Strike threatquery
Reference: https://threatquery.com/engines/ip.html?value=107.173.221.187&type=ip

Avatar
threatquery
Submitted from threatquery threat intelligence platfrom to make internet safer.

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2025-10-21 00:25:08 14c9acd6e198a8a9c74445b5b9b5827e05b80c62e4a780c72681e0f2593b974a