ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 65.108.1.219:28593.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-16 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	227532
IOC:	65.108.1.219:28593
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS24940 HETZNER-AS
Country:	DE
First seen:	2021-09-28 18:11:14 UTC
Last seen:	2023-08-01 18:04:03 UTC
UUID:	77d9f9d6-2087-11ec-b078-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-09-29 12:06:19	9351b3d3a5b780220b67f06c7cb9b8d49a95055f6aa0934b733b0208458cfa6f
2021-09-29 12:01:23	51d754d17bded4a65f90a483bf8aeb78fdcbb421ccbcd5391eeb777e4ffc4d7d
2021-09-29 09:31:23	c5e23e7b15649c2d49b797eba7d7b83c76d661603e1b4bde412185eac2b81982
2021-09-29 06:31:18	9b9b66a158beacb1a23877ab25c70435a43f072f76a0ba35fed9ad32f781d04c
2021-09-28 18:16:27	8a71d3f03b8e26b7a415d61e50f6b7ddd12651ace3c70e11e48518d94fca60eb