ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 93.115.20.139:28978.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-10 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	227127
IOC:	93.115.20.139:28978
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS202448 mvps
Country:	US
First seen:	2021-09-27 17:22:36 UTC
Last seen:	2023-08-01 18:06:34 UTC
UUID:	8277ac05-1fb7-11ec-b078-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-10-25 12:20:16	ec21adf9c15c15820f6251703808ae664a69b53d172d3bb2933bde49105757cf
2021-10-25 06:45:27	3acca9f2af679c0cba972e71c88871397132c5f389a5beffa7710204b0c81987
2021-10-25 06:20:34	7f7b289e8bfd8e547f28478238c98b7ad31c7601e6033b5c1c79afc924b40a6c
2021-10-25 06:15:43	a499e99f2ec3aef0ed06f1d8c2c5b5752bdf1575cba0b2230ea49f810f2db7d4
2021-10-25 05:05:36	fc2e04d392ab5e508fdf6c90ce456bfd0af6def1f10a2074f82df8f58079d5e4
2021-10-25 05:05:33	e6b84ffaaeb4807ccac7c778f87d0b3545841e076063c8f594141430f791f0bc
2021-10-24 13:16:04	29669b199ce94a9ee97f8955480b8e8f5b0ed8b38824f4316f094668a71e0b2c
2021-10-24 13:05:53	28728c85010f66ccd3b2b88a39f9ebb074178bdf094c6df5702b9a80e9c3007d
2021-09-27 17:22:39	7636ee030864f0ef28c818d440e668b70c137f62733dd4593d62aaa3d17b3c46