ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 193.106.191.253:4752.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-16 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	390795
IOC:	193.106.191.253:4752
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS43260 AS43260
Country:	TR
First seen:	2022-02-24 21:16:06 UTC
Last seen:	2023-08-01 17:59:40 UTC
UUID:	fb0644d8-95b6-11ec-a022-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-03-10 16:26:30	dcc4e87f39108014864f82b22a34773dd6d7c9b0da4a32f6682e63b5d16e8066
2022-02-25 20:05:13	b9929a133828adf8780d52255ab5464139d7cd729e4778e5ac6e658b84281cbe
2022-02-25 19:55:12	3b4140faaa3828375888ca2ff1152fdf46529175ee49931ad8a20f52e0cdb058
2022-02-25 07:10:34	b0fce8abd720ac4e28d24b62a9c26c8ffc65daed099034bb4e30e91b8d88a7a5
2022-02-24 21:16:09	b17485bdb6b377c0c38ab3e2ab83572760ce6c09952506d9202a235b82021a68