ThreatFox IOC Database

You are viewing the ThreatFox database entry for domain mestre2.ddns.net.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1668712
IOC: mestre2.ddns.net
IOC Type :domain
Threat Type :botnet_cc
Malware: XWorm
Confidence Level : Confidence level is elevated (75%)
Is compromised? : False
ASN:AS53107 EVEO_S.A.
Country:- BR
First seen:2025-12-06 19:00:33 UTC
Last seen:2025-12-12 18:39:28 UTC
UUID:d7c3a810-d2d5-11f0-a341-42010aa4000a
Reporter abuse_ch
Reward 5 credits from ThreatFox
Tags:XWorm
Reference: https://bazaar.abuse.ch/sample/ded8ac26fe5cf263c473d957436a597d1eea50fc6ee8cf59aa54a90adca64074/

Avatar
abuse_ch
xworm botnet C2 on port 9696 TCP