{
    "id": "1824264",
    "ioc": "221.130.29.85:2375",
    "ioc_type": "ip:port",
    "threat_type": "payload_delivery",
    "malware": "elf.kinsing",
    "malware_printable": "Kinsing",
    "malware_alias": "h2miner",
    "confidence_level": "85",
    "first_seen": "2026-06-07 09:52:46 UTC",
    "last_seen": null,
    "reporter": null,
    "reference": "https:\/\/twitter.com\/NullBlue67",
    "threatfox_link": "https:\/\/threatfox\/ioc\/1824264",
    "tags": [
        "chroot-escape",
        "docker-api",
        "kinsing"
    ]
}