ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://138.68.162.128/.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-10 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	302456
IOC:	http://138.68.162.128/
IOC Type :	url
Threat Type :	botnet_cc
Malware:	Raccoon
Malware alias:	Mohazo, RaccoonStealer, Racealer, Racoon
Confidence Level :	Confidence level is high (100%)
ASN:	AS14061 DIGITALOCEAN-ASN
Country:	US
First seen:	2022-01-19 15:16:56 UTC
Last seen:	never
UUID:	d722aaae-793a-11ec-8ab6-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RaccoonStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-01-20 12:21:00	b31474d8c16181a103a6ac36d9277eb7ac5dbb7261cfa74f82adbc8b2d06d3fa
2022-01-20 07:25:43	6c30d21f796fe02e8e6de2823d8a925a5d3d6c2b248c134e78c18d07d3cb657d
2022-01-20 06:51:04	9a2bd09d8065bb3733599fb8b64ec30e97326256849b268b8f94d4f655dac981
2022-01-19 19:07:06	1f80be7f5556f97ce097e588b184ac44c66b72b05a96d833929818774bbaaaa2
2022-01-19 17:56:42	849beb1413d9750e1bad8a3758dc87053d47fe5cba1528723414c918625e6d27
2022-01-19 17:16:59	0e144c258913a35001fd23c3413005c90e7bc35be3baff3f90ca77570a8c0a27
2022-01-19 15:16:59	7616d28ae0259737b65234b689f0ed88875aaede87f2408068ad41144dd489d0