ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://64.89.161.67/3b250ef3f9e542adadfb.php.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1837319
IOC: http://64.89.161.67/3b250ef3f9e542adadfb.php
IOC Type :url
Threat Type :botnet_cc
Malware: Stealc
Confidence Level : Confidence level is elevated (75%)
Is compromised? : False
ASN:AS205759 GHOSTYNETWORKS
Country:- US
First seen:2026-06-25 11:10:48 UTC
Last seen:2026-06-25 21:12:42 UTC
UUID:84bb9dfe-7086-11f1-97fa-42010aa4000a
Reporter abuse_ch
Reward 5 credits from ThreatFox
Tags:Stealc
Reference: https://bazaar.abuse.ch/sample/07cc22c1db2b39a7fc3058b02ec15225b2945e4866a9a0e84b8f73672ae9bcd7/

Avatar
abuse_ch
stealc botnet C2