ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 154.53.32.211:53037.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-11 01:15:02 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	282341
IOC:	154.53.32.211:53037
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS40021 CONTABO-40021
Country:	DE
First seen:	2021-12-23 05:46:44 UTC
Last seen:	2023-08-01 17:57:17 UTC
UUID:	b631911f-63b3-11ec-8ab6-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-12-23 06:51:36	ac6db0c7303aa294dc3f00fe7b332c460a167b3e23befe0e3487528fca5c833e
2021-12-23 06:26:42	d36b151a610904a2cc753509d9116813d7726c5548a5f0fe4269ed8c4b5c757c
2021-12-23 06:12:05	9ead7ad598f180927e810c975df2042366f1acfc95d60e2e2d06fd5f35a8c144
2021-12-23 06:07:22	8f1037caacf898ac8848741d377546292dbe070aeda34079a81bba8857df3cdb
2021-12-23 05:46:47	74ee073d92d83d68f596996f996fe32ea6c9e7eae6086077f503c48a2521d730