ThreatFox IOC Database

You are viewing the ThreatFox database entry for url https://435123332155.com/api.php.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1816107
IOC: https://435123332155.com/api.php
IOC Type :url
Threat Type :botnet_cc
Malware: Unknown Stealer
Confidence Level : Confidence level is high (100%)
Is compromised? : True
ASN:AS13335 CLOUDFLARENET
Country:- US
First seen:2026-05-19 05:15:28 UTC
Last seen:never
UUID:284f5efd-52f2-11f1-b930-42010aa4000a
Reporter DodgeThisSec
Reward 5 credits from ThreatFox
Tags:backdoor NWHStealer RAT stealer Steam
Reference: https://x.com/shotgunner101/status/2056450290866364626?s=20

Avatar
DodgeThisSec
Backdoored Steam Game known as "Beyond The Dark" has a Rat and InfoStealer as part of its infection chain if you install and run the game (now removed from steam).