ThreatFox IOC Database
You are viewing the ThreatFox database entry for ip:port 110.40.198.62:5555.
Database Entry
| IOC ID: | 1731221 |
|---|---|
| IOC: | 110.40.198.62:5555 |
| IOC Type : | ip:port |
| Threat Type : | botnet_cc |
| Malware: | Cobalt Strike |
| Malware alias: | Agentemis, BEACON, CobaltStrike, cobeacon |
| Confidence Level : | Confidence level is elevated (75%) |
| Is compromised? : | False |
| ASN: | AS45090 TENCENT-NET-AP |
| Country: |  CN |
| First seen: | 2026-01-13 02:51:43 UTC |
| Last seen: | 2026-02-27 01:49:39 UTC |
| UUID: | cb40f3d5-f02a-11f0-9957-42010aa4000a |
| Reporter |  abuse_ch |
| Reward |
10 credits from anonymous |
| Tags: | CobaltStrike drb-ra |
Malware Samples
The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).
| Time stamp (UTC) | SHA256 hash | Bazaar |
|---|---|---|
| 2026-01-20 07:00:26 | ad195ae51946b4b4aad4fce944e58dc3f0b8c9d2f058314fb54ca476fe5daae5 |