ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 80.87.192.249:16640.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:226452
IOC: 80.87.192.249:16640
IOC Type :ip:port
Threat Type :botnet_cc
Malware: RedLine Stealer
Malware alias:RECORDSTEALER
Confidence Level : Confidence level is high (100%)
ASN:AS29182 RU-JSCIOT
Country:- RU
First seen:2021-09-25 08:11:42 UTC
Last seen:2025-06-30 18:01:46 UTC
UUID:379f6ec1-1dd8-11ec-830d-42010aa4000a
Reporter abuse_ch
Reward 5 credits from ThreatFox
Tags:RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2021-09-26 00:46:08 ec316131d19e352193c7eb590ff34e7079fe94fd0a8bb44b7dff6d9fbabb44b2
2021-09-26 00:05:45 5f9bccb44772e2203b0fe618dd0868bb5b9272dc8547f82d6e8c6e1ea05f0be3
2021-09-25 10:14:27 f1a9eccc2cb1b0572b669b47cb1b29667221529555e554f34d2d13e6e334ceb6
2021-09-25 09:37:52 0eacfcddb54670cb6b1585e554d4bd26bb7f74d5b0728b1679b117f49b349743
2021-09-25 09:37:50 60595b6c6de942a30a61cb02b27b2dfec3cb76ee4751a68b8d92feefda02f78e
2021-09-25 08:11:44 383f147b7eb4c815bc9def993cff994da41c7395092ceedd3c22d10e130b8c15