ThreatFox IOC Database
You are viewing the ThreatFox database entry for ip:port 16.78.248.241:4832.
Database Entry
| IOC ID: | 1749461 |
|---|---|
| IOC: | 16.78.248.241:4832 |
| IOC Type : | ip:port |
| Threat Type : | botnet_cc |
| Malware: | XWorm |
| Confidence Level : | Confidence level is high (100%) |
| Is compromised? : | False |
| ASN: | AS16509 AMAZON-02 |
| Country: |  US |
| First seen: | 2026-02-17 06:19:11 UTC |
| Last seen: | never |
| UUID: | c29d538c-0b72-11f1-a068-42010aa4000a |
| Reporter |  Neiki |
| Reward |
10 credits from Saber 10 credits from anonymous |
| Tags: | AUTO-REG AUTO-STARTUP BINDER CRYPTO-REGEX defense_evasion execution generic IMS-API XWorm |
| Reference: | https://www.threat.rip/file/e792b1c4655340b8b1437deaa0e039c311eab876748a79fe759cc4939921ae3d/config |