ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 45.9.20.194:11452.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:276523
IOC: 45.9.20.194:11452
IOC Type :ip:port
Threat Type :botnet_cc
Malware: RedLine Stealer
Malware alias:RECORDSTEALER
Confidence Level : Confidence level is high (100%)
First seen:2021-12-16 08:31:32 UTC
Last seen:2023-08-01 18:03:16 UTC
UUID:92921a4c-5e4a-11ec-8ab6-42010aa4000a
Reporter abuse_ch
Reward 5 credits from ThreatFox
Tags:RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2021-12-17 08:00:36 d64b097aa7ae529d88f3ea5438deb1630aa57ebf7d7135203ed322ee591997c4
2021-12-17 00:55:52 0f31fcaa49855c3a40398e2e85604dc062bb4f51e538d689dad2851ea18760ab
2021-12-17 00:20:33 1c5cf831daab60f538f725dcf73f44ee1379a97dc228185f4ccbdefcac678a3d
2021-12-16 19:26:53 c70ec05d702f3726726927d2d524841f67a7a9b5e844f81b0d8fbcfcbd91fc6f
2021-12-16 08:31:37 8a6b85587a7c87d3f2da53fd4570b961a8a3d606ba2f337bbe0ebe6b07c97989