ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 94.156.119.71:443.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1785616
IOC: 94.156.119.71:443
IOC Type :ip:port
Threat Type :botnet_cc
Malware: Unknown malware
Confidence Level : Confidence level is elevated (75%)
Is compromised? : False
ASN:AS211673 Mynymbox
Country:- KN
First seen:2026-04-14 08:57:05 UTC
Last seen:never
UUID:e9815191-37df-11f1-8759-42010aa4000a
Reporter abuse_ch
Reward 5 credits from ThreatFox
Tags:cpu-z DataExfil rclone
Reference: https://blog.deception.pro/blog/cpuz-trojan-stxrat-purelogs-data-exfil-april-2026

Avatar
abuse_ch
Data exfiltration destination via rclone (QEMU Alpine proxy)