ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 45.14.49.128:16334.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-17 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	172157
IOC:	45.14.49.128:16334
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS208951 AS-ITGLOBALCOM
Country:	RU
First seen:	2021-08-11 19:26:47 UTC
Last seen:	never
UUID:	11ac3aff-fada-11eb-830d-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-08-12 08:51:54	65624215e9613e4922c32eb184b75ea1334a6a2fa32d45ef535918ef7b9a9eca
2021-08-12 08:26:45	2cb7b724ba108cfab0f07348997e32c7c531084ffd2c9326e6ba51ad8f4ed656
2021-08-11 21:56:34	b90ca330c6c4dfd459fb04c6bf0953b05547c9965151223981bdeac1f5850f31
2021-08-11 21:51:50	befd232ab8dab62c010a0a96e0e62a1ff561509877fd8acfa1507df11e092aec
2021-08-11 21:11:38	c5528f76191477d30f3d6451d82bf0015d9a3706565fddd37e87130635f3182c
2021-08-11 20:41:54	51837836176f75bd57295071de596b18ec1a1af63681ccfdd69f5dedb0976da3
2021-08-11 20:26:34	854e5c0dbeb31b0953c41b36dc88fa4e959c00c848fb723dc2f9223aeb5a359a
2021-08-11 19:56:34	1cdddf182f161ab789edfcc68a0706d0b8412a9ba67a3f918fe60fab270eabff