ThreatFox IOC Database

You are viewing the ThreatFox database entry for domain cdo.it.com.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1796318
IOC: cdo.it.com
IOC Type :domain
Threat Type :botnet_cc
Malware: DarkComet
Malware alias:Breut, Fynloski, klovbot
Confidence Level : Confidence level is elevated (75%)
Is compromised? : False
ASN:AS13335 CLOUDFLARENET
Country:- US
First seen:2026-04-22 21:05:49 UTC
Last seen:never
UUID:0a348966-3e8f-11f1-8759-42010aa4000a
Reporter abuse_ch
Reward 5 credits from ThreatFox
Tags:darkcomet
Reference: https://bazaar.abuse.ch/sample/7e9a43686183b6cf6b9ac26c6c3de0176637799bf1b7ba348b31a7407cc3948a/

Avatar
abuse_ch
darkcomet (aka Breut,Fynloski,klovbot) botnet C2 on port 443 TCP