ThreatFox IOC Database
You are viewing the ThreatFox database entry for ip:port 184.170.142.38:5552.
Database Entry
| IOC ID: | 1749108 |
|---|---|
| IOC: | 184.170.142.38:5552 |
| IOC Type : | ip:port |
| Threat Type : | botnet_cc |
| Malware: | Quasar RAT |
| Malware alias: | CinaRAT, QuasarRAT, Yggdrasil |
| Confidence Level : | Confidence level is high (100%) |
| Is compromised? : | False |
| ASN: | AS10929 ESTRUXTURE-QC-10929 |
| Country: |  US |
| First seen: | 2026-02-16 07:58:47 UTC |
| Last seen: | 2026-02-17 16:50:50 UTC |
| UUID: | 80988494-0af8-11f1-a068-42010aa4000a |
| Reporter |  Neiki |
| Reward | 5 credits from ThreatFox |
| Tags: | AUTO-REG discovery evasion execution OFFICE persistence quasar spyware |
| Reference: | https://www.threat.rip/file/23f870a153af40e9c488641612fc16d8a62d24c1269deaa0a3c20a2dfe529c98/config |