ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 192.236.154.249:6000.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1750343
IOC: 192.236.154.249:6000
IOC Type :ip:port
Threat Type :botnet_cc
Malware: XWorm
Confidence Level : Confidence level is high (100%)
Is compromised? : False
ASN:AS54290 HOSTWINDS
Country:- US
First seen:2026-02-18 09:48:38 UTC
Last seen:never
UUID:0f766921-0cad-11f1-a068-42010aa4000a
Reporter Neiki
Reward 10 credits from Saber
10 credits from anonymous
Tags:API-BASE64 ARCH-SCR defense_evasion discovery execution RAT SUSP-POWERSHELL trojan XWorm
Reference: https://www.threat.rip/file/4b60c76c6c3e16c24020d89f73c8c7f230064ed912d87484c9e764ee49705308/config