{
    "id": "1627932",
    "ioc": "172.238.172.240:443",
    "ioc_type": "ip:port",
    "threat_type": "botnet_cc",
    "malware": "win.empire_downloader",
    "malware_printable": "Empire Downloader",
    "malware_alias": null,
    "confidence_level": "100",
    "first_seen": "2025-10-28 04:01:39 UTC",
    "last_seen": null,
    "reporter": null,
    "reference": "https:\/\/search.censys.io\/hosts\/172.238.172.240",
    "threatfox_link": "https:\/\/threatfox\/ioc\/1627932",
    "tags": [
        "AKAMAI-LINODE-AP",
        "AS63949",
        "c2",
        "censys",
        "PowershellEmpire"
    ]
}