ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 31.44.3.94:62655.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-17 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	192542
IOC:	31.44.3.94:62655
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS208951 AS-ITGLOBALCOM
Country:	RU
First seen:	2021-08-21 06:36:07 UTC
Last seen:	2023-08-01 18:02:03 UTC
UUID:	10ec442b-024a-11ec-830d-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-08-21 21:10:29	3d8a2fc96d40eb7da26413ef54486ce94e3e89730bf15602e7ecbbc5ad852c20
2021-08-21 21:10:24	723e570331aa3284a7b94f247edd6c395df4dc0f55f1d263f418207c28ef0dbe
2021-08-21 21:00:22	d51dd44a65bdd80d1dfcfb6424668f25933ed52348e0eae8c5beac66b200410c
2021-08-21 20:50:23	d13c6afa7b77e0426a8b83a84868d4b86bd2294cf6f1d37c4a8942c881402925
2021-08-21 19:15:44	09d043a7f289686e33b06b331ea2882c7064b9e2a6712dfeff1752e8ffb7ec43
2021-08-21 18:55:34	e1c8f91a01400615df83126a8b3a323425f30b5480d405b26adf2d924c21464f
2021-08-21 06:51:48	c05415ab6dba7038b35bfab04610a8d0038b3f99e5795f616c65c924c2765c99
2021-08-21 06:36:11	5ef5f8a5b159ff8bb0e899dc25f57293c7bca8f5ac5d644c49a6c92be1b21405
2021-08-21 06:36:09	ca0bc652d651f727d69fbb22cc91037bc825989e759fd54f6eb0cc118286506f