ThreatFox IOC Database
You are viewing the ThreatFox database entry for ip:port 64.89.161.167:5173.
Database Entry
| IOC ID: | 1820851 |
|---|---|
| IOC: | 64.89.161.167:5173 |
| IOC Type : | ip:port |
| Threat Type : | botnet_cc |
| Malware: | Unknown RAT |
| Confidence Level : | Confidence level is elevated (75%) |
| Is compromised? : | False |
| ASN: | AS205759 GHOSTYNETWORKS |
| Country: |  US |
| First seen: | 2026-06-02 10:45:57 UTC |
| Last seen: | never |
| UUID: | 6519d983-5e5f-11f1-b930-42010aa4000a |
| Reporter |  netresec |
| Reward | 5 credits from ThreatFox |
| Tags: | OverlordRAT |
| Reference: | https://infosec.exchange/@netresec/116679569279815152 |
netresec
JA3: 725543c78edf669194c11dc7a039b56eJA3S: eb1d94daa7e0344597e756a1fb6e7054
JA4: t13i131000_f57a46bbacb6_ab7e3b40a677