ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://159.69.92.223/.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-16 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	275517
IOC:	http://159.69.92.223/
IOC Type :	url
Threat Type :	botnet_cc
Malware:	Arkei Stealer
Malware alias:	ArkeiStealer
Confidence Level :	Confidence level is high (100%)
ASN:	AS24940 HETZNER-AS
Country:	DE
First seen:	2021-12-14 01:07:46 UTC
Last seen:	never
UUID:	3fa33e84-5c7a-11ec-8ab6-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	ArkeiStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-12-14 22:44:41	236dad58970dbb32df7df1c6e317cf5c2a4cba4ec44e872542d926c709026f6c
2021-12-14 19:30:27	d51d87ce93b1f39f87f0debd1122aa7721e5e4fa9f7f615c4c17bd90f12da71d
2021-12-14 14:45:49	4879803b6326f27bb8b68448fe7394b2358c2eeb25ec2c4c6a176313d003c29a
2021-12-14 07:01:46	e712b1b6ea37890ab7a310f969eb95be24e28bfcc26bb908147a0bc676d4169d
2021-12-14 06:56:25	5f50dd0803e8259dc5998650dcaa40c4ac1ab883218209e41028af0baee7b4c3
2021-12-14 06:50:56	55cf9ff19de4bf3dab3d00f6196155833eea3af6d74fe9240c9aec3cda6f4439
2021-12-14 06:45:58	b10629d72dbb4a8ee27c2bb4f0343e241bda9c8fe740cd0eecd4888fa67fb5f0
2021-12-14 06:45:56	8b8495184c930532a3f2ae9d85e75b4f58d5dc866a72b61462d4aea778d5891b
2021-12-14 04:21:27	ee9d6c7a2b699d1a119e1c02620941bfe288a22b4b2942a38d5e84a6b7ac2d7d
2021-12-14 01:07:49	b1fa6b38fea30230e53050f59599d3789582423035f71cd0a85d3f6f87520f3e