ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://89.108.77.46/httpGameDbLinux.php.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-11 01:15:02 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	277657
IOC:	http://89.108.77.46/httpGameDbLinux.php
IOC Type :	url
Threat Type :	botnet_cc
Malware:	DCRat
Malware alias:	DarkCrystal RAT
Confidence Level :	Confidence level is high (100%)
ASN:	AS197695 AS-REGRU
Country:	RU
First seen:	2021-12-19 00:26:45 UTC
Last seen:	never
UUID:	58c70c33-6062-11ec-8ab6-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	dcrat

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-12-19 07:01:22	ec6a61ef3cf3ac84411a167e0befa73f66f4e667c6d9540560befa5dcfe83c5c
2021-12-19 04:32:36	6f06dc78d8c3a807688264335ead5fef00be7a03273ac0cc6e033a82113f6abd
2021-12-19 04:27:32	a3d6c491d32262a758c8a3e8f84bb13a6cec54855cff1976a9c0b7edb81766d7
2021-12-19 04:22:21	3797da35c19a46cec3aee8ed773b73c52e3bfd6ea0c0f09bd05e1262cdf1f0bc
2021-12-19 04:07:18	281549f327a530e786e962b96f77904882a494e6685c6e67d8af8c7752a237c3
2021-12-19 04:07:15	03932a45a4930fa81f20cea4598a9845262d89ff410d23f28731235a898a22a1
2021-12-19 04:07:13	e6f9478f5ec1f4e62aaaa075b7a1479d2aed7c65a3560659bb3690d36d68c0bb
2021-12-19 00:26:46	151a46a906ce9c9ea079cd3b9d2911d68b5c800f3b07df514d9e90a31163fbe2