ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://101.99.95.5/.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-11 01:15:02 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	393044
IOC:	http://101.99.95.5/
IOC Type :	url
Threat Type :	botnet_cc
Malware:	Raccoon
Malware alias:	Mohazo, RaccoonStealer, Racealer, Racoon
Confidence Level :	Confidence level is high (100%)
ASN:	AS45839 SHINJIRU-MY-AS-AP
Country:	MY
First seen:	2022-03-08 17:05:51 UTC
Last seen:	never
UUID:	0247ebf3-9f02-11ec-a022-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RaccoonStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-03-09 04:25:52	954fdefd2dd5cf44876783f51cf35edef3fb790ed3ba777c1bfafb13680a1ccc
2022-03-08 23:50:49	067439eef145d00e29640554bedb7458e1e56861ed5a1a9cfaed14205d8682ef
2022-03-08 23:20:48	81dd784ad8e4a6924b1b0ee5ebf09d3018e3bda4225f3c89439e8846cf5e09d9
2022-03-08 21:15:51	30a41d35fbdbb0e5807ed057926d59b895358e0f2fe39df4acc6cf56cb704f20
2022-03-08 18:30:59	ebcd0c7de9878d9c83848e8adf3b135c34ede61cf39caede45ea3f2855c77e43
2022-03-08 17:16:00	5dffb38ace0630c5af9e53abbe55ad17cb42c09dfda521a584ab8707c1746e28
2022-03-08 17:10:53	bbfbaa2a94c27178182d0602e7939539dd4af0f025c252a87f1cb623b6dd188b
2022-03-08 17:05:53	37d8e1ce3b6e6488942717aa78cb54785edc985143bcc8d9ba9f42d73a3dbd7a