ThreatFox IOC Database
You are viewing the ThreatFox database entry for ip:port 165.99.43.72:19010.
Database Entry
| IOC ID: | 1744546 |
|---|---|
| IOC: | 165.99.43.72:19010 |
| IOC Type : | ip:port |
| Threat Type : | botnet_cc |
| Malware: | ValleyRAT |
| Malware alias: | Winos |
| Confidence Level : | Confidence level is high (100%) |
| Is compromised? : | False |
| ASN: | AS401701 COGNETCLOUD-2 |
| Country: |  HK |
| First seen: | 2026-02-11 08:25:06 UTC |
| Last seen: | 2026-03-03 08:38:24 UTC |
| UUID: | 2bbd58c4-0723-11f1-a068-42010aa4000a |
| Reporter |  abuse_ch |
| Reward | 5 credits from ThreatFox |
| Tags: | RAT ValleyRAT |
Malware Samples
The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).
| Time stamp (UTC) | SHA256 hash | Bazaar |
|---|---|---|
| 2026-02-11 08:25:09 | 99d28e8eef19a4c01ff66c143e6beb6fdd5862c8cf7c2254ed2df5b68b6b4175 |