ThreatFox IOC Database
You are viewing the ThreatFox database entry for ip:port 77.221.154.164:4444.
Database Entry
| IOC ID: | 1665422 |
|---|---|
| IOC: | 77.221.154.164:4444 |
| IOC Type : | ip:port |
| Threat Type : | botnet_cc |
| Malware: | Quasar RAT |
| Malware alias: | CinaRAT, QuasarRAT, Yggdrasil |
| Confidence Level : | Confidence level is high (100%) |
| Is compromised? : | False |
| ASN: | AS210644 AEZA-AS |
| Country: |  RU |
| First seen: | 2025-12-01 08:02:41 UTC |
| Last seen: | 2025-12-12 18:38:05 UTC |
| UUID: | 1c21952b-ce8c-11f0-a341-42010aa4000a |
| Reporter |  DonPasci |
| Reward | 5 credits from ThreatFox |
| Tags: | AEZA-AS AS210644 c2 censys quasar RAT |
| Reference: | https://search.censys.io/hosts/77.221.154.164 |
Malware Samples
The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).
| Time stamp (UTC) | SHA256 hash | Bazaar |
|---|---|---|
| 2025-12-02 06:15:06 | 1808e73f2c78354cfa8e9ad01afcec4bf4111afd316a5d262d013c155b0c3982 |