ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://185.215.113.42/f83jd823S/index.php.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-14 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	283453
IOC:	http://185.215.113.42/f83jd823S/index.php
IOC Type :	url
Threat Type :	botnet_cc
Malware:	Amadey
Confidence Level :	Confidence level is high (100%)
ASN:	AS51381 ELITETEAM-PEERING-AZ1
Country:	SC
First seen:	2021-12-23 19:31:38 UTC
Last seen:	never
UUID:	f2e80c38-6426-11ec-8ab6-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	Amadey

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-12-24 13:20:39	07a5ff510108132737775fd77c67f40c3ed50b414ed5aaf9e633cab96fa99c98
2021-12-24 02:15:53	96283ef1de41a1a5c4e7e0fa5ead383995198c25ae71d19d0a4138333ce88dfb
2021-12-23 19:36:09	03430361a6d2fe6c89d6b237ca9b887cc6269187b305afc9ef3d8642533698c4