ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://86.107.168.126/verification.vrf.

Database Entry


IOC ID:1840319
IOC: http://86.107.168.126/verification.vrf
IOC Type :url
Threat Type :payload_delivery
Malware: Vidar
Confidence Level : Confidence level is high (95%)
Is compromised? : False
ASN:AS26832 RICAWEBSERVICES
Country:- CA
First seen:2026-06-30 16:40:25 UTC
Last seen:never
UUID:03bd303c-749d-11f1-97fa-42010aa4000a
Reporter trustinveritas
Reward 5 credits from ThreatFox
Tags:b686353b7cd87ef4315b344a17caa3cc ClickFix psgiran Vidar we

Avatar
trustinveritas
Vidar ClickFix stage-2: 1.7MB PowerShell that reflectively loads a .NET XOR_Loader -> Vidar.