ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 104.37.174.84:7890.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1665544
IOC: 104.37.174.84:7890
IOC Type :ip:port
Threat Type :botnet_cc
Malware: Remcos
Malware alias:RemcosRAT, Remvio, Socmer
Confidence Level : Confidence level is high (100%)
ASN:AS396073 MAJESTIC-HOSTING-01
Country:- US
First seen:2025-12-01 16:00:07 UTC
Last seen:never
UUID:cecb154a-cece-11f0-a341-42010aa4000a
Reporter abuse_ch
Reward 5 credits from ThreatFox
Tags:RAT RemcosRAT

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2025-12-02 07:30:15 6e57966b5fd6c676b5be0e7ff8d713053722fbc27723768ab7b5e96f1157ae91
2025-12-02 06:10:10 859ffef0278c9c9835db23202f3aa67b69ad1e00a3f326350f613ab701a45ee3
2025-12-01 16:00:11 e710b54964053441596c34b3d478d6784b314ffd8bacec9def124050b2a86f04