ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 91.92.242.99:2404.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1734318
IOC: 91.92.242.99:2404
IOC Type :ip:port
Threat Type :botnet_cc
Malware: Remcos
Malware alias:RemcosRAT, Remvio, Socmer
Confidence Level : Confidence level is high (100%)
Is compromised? : False
ASN:AS214943 RAILNET
Country:- US
First seen:2026-01-19 10:30:06 UTC
Last seen:never
UUID:d2c27ba1-f521-11f0-9957-42010aa4000a
Reporter abuse_ch
Reward 5 credits from ThreatFox
Tags:RAT RemcosRAT

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2026-01-20 08:10:16 5f947957f8b2c4cc8609167eaec826c9855e15c55dac3926c33b2a0c003cf773
2026-01-20 05:45:13 bf46723d199408eb636dfbb7d50ef97fad7c96be7aedca35fa350c92a7492a4e
2026-01-19 21:05:12 f75cdb38544336db1eea1ccb9ddb99e1584dbae702986f1321d35825e08ef4d9
2026-01-19 10:30:09 be2142e2818d4df10efca8b223a823dae8dbcc0679e8e19a94fa9ae729c34273