ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://94.158.245.199/.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-10 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	254998
IOC:	http://94.158.245.199/
IOC Type :	url
Threat Type :	botnet_cc
Malware:	Raccoon
Malware alias:	Mohazo, RaccoonStealer, Racealer, Racoon
Confidence Level :	Confidence level is high (100%)
ASN:	AS39798 MivoCloud
Country:	MD
First seen:	2021-11-26 17:47:19 UTC
Last seen:	never
UUID:	e6ee2053-4ee0-11ec-8ab6-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RaccoonStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-11-26 23:46:44	3a3032f28b080be56626c4ff6c345fe83457e4148644026b4899e6aead5bd570
2021-11-26 22:56:22	f1203a90897dcc7df33bf3e50f26e55bc88021898aff502304272bbdff98ac1b
2021-11-26 21:51:39	e2bc183186790b127ad0435c5d9141a8f6635f2ad0d3f7d1c4c7147305a073ef
2021-11-26 20:36:51	2a9e7bc07bd4ec39c2beaa42ff35352bbe6400f899f70be8922688db70cc5357
2021-11-26 19:46:44	4c55c1751729ce6ceea3e07ec703d9086228e27a7a9ae3934267b4ec1adbb1af
2021-11-26 18:26:52	3a227b8e84722b577247b94618314f2ff02a48a2f984c32391717a68df894586
2021-11-26 17:47:21	f1d98438e664906a234fcffb43ec48b80f2722c28c5462fa04f859bca022187b
2021-11-26 17:47:20	057ff01b1f4ec1999bdfe0561f4dede6c6e1a115154a5754fbef9019f25599ad