ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 185.80.53.81:15667.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-10 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	228316
IOC:	185.80.53.81:15667
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS59711 HZ-EU-AS
Country:	BG
First seen:	2021-09-30 02:41:23 UTC
Last seen:	never
UUID:	e6ca7802-2197-11ec-a35f-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-09-30 06:31:37	d158afc32c31573efe9e0d25404b94a2ebf29e8abe352d67e9e7b2378028bd6b
2021-09-30 05:41:49	22c23de0a046b3652861d880ad53bbfca85448d0a6814d34151b1f359839dd37
2021-09-30 04:36:10	d4bec541272c470bc24653ca13fe85d4011e300b79026b767c6bd3abcb93b637
2021-09-30 03:06:15	ec078bf46a67bb519f2f15227a024af19356993f9b5b26bd16d9248f42fb373d
2021-09-30 03:01:12	d852901bdc93f05c0dbb9692dfe08ca5465dadce441ef722b617314578fd5c0f
2021-09-30 02:56:13	4ba939154ee9df1004629da3aee541a36eb4faabe421190ddbbbf1ccd195e03a
2021-09-30 02:41:24	d9d7046f7539fd97259759a51b02650790a961ddb0d8f0b9f31c76faf6d63a91