ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 134.209.143.167:443.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1773551
IOC: 134.209.143.167:443
IOC Type :ip:port
Threat Type :botnet_cc
Malware: Latrodectus
Malware alias:BLACKWIDOW, IceNova, Latrodectus, Lotus
Confidence Level : Confidence level is elevated (75%)
Is compromised? : False
ASN:AS14061 DIGITALOCEAN-ASN
Country:- US
First seen:2026-03-22 18:02:16 UTC
Last seen:never
UUID:77dfb808-25ac-11f1-9af6-42010aa4000a
Reporter Lenny_3BO
Reward 5 credits from ThreatFox
Tags:c2 Latrodectus

Avatar
Lenny_3BO
Latrodectus C2 candidate. DigitalOcean Santa Clara. JARM 2ad2ad16d2ad2ad22c2ad2ad2ad2ad89cd2abd9b + CN=localhost fingerprint. Shared cert with 138.68.29.243. Serves Sign In page.