ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 51.254.68.139:8067.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-10 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	192437
IOC:	51.254.68.139:8067
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS16276 OVH
Country:	FR
First seen:	2021-08-20 11:15:55 UTC
Last seen:	2023-08-01 18:03:49 UTC
UUID:	fcd54247-01a7-11ec-830d-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-08-20 14:56:04	b46fa39b04cb5928c3dd9c1bbcbd9008401d98faff5e42115102b00c60fbd486
2021-08-20 14:41:03	0a823cbd6a32a10c927253fa40466c8a3177e487ee7895a8a2e244a9b4c415fc
2021-08-20 14:36:28	142483644d21d3bbdde166a2848e7819f91197a51ffdb64567168ec11dd0b321
2021-08-20 14:06:11	8a0c92492986fc6dde9450672a3f76d05beee65f95b997a7866c7bba341bbaa2
2021-08-20 14:01:16	78f958d430a4dec84e4126958d0bde722beab77f03f1ecd733ba94827997dec7
2021-08-20 11:41:12	b817002c69c6315e116f14d6fe64151577999eb773842f052fb17d9a7413a53c
2021-08-20 11:36:11	3b15547e53d7254ec42974dc5a1d7b72cffd722a41114944b5606a845be7b76d