ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 14.128.53.229:38217.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1824425
IOC: 14.128.53.229:38217
IOC Type :ip:port
Threat Type :botnet_cc
Malware: ValleyRAT
Malware alias:Winos
Confidence Level : Confidence level is elevated (75%)
Is compromised? : False
ASN:AS64050 BGNL-HK
Country:- SG
First seen:2026-06-07 19:35:47 UTC
Last seen:never
UUID:1562786b-62a8-11f1-a345-42010aa4000a
Reporter abuse_ch
Reward 5 credits from ThreatFox
Tags:valleyrat_s2
Reference: https://bazaar.abuse.ch/sample/5c12d9b33c2d28dc2323bfa7db99e264fe292dca9ad1ac83f99b2e3762e67cb1/

Avatar
abuse_ch
valleyrat_s2 (aka Winos) botnet C2