ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://45.133.1.152/idgrfd/fde/gate.php.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2026-06-15 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	43896
IOC:	http://45.133.1.152/idgrfd/fde/gate.php
IOC Type :	url
Threat Type :	botnet_cc
Malware:	Pony
Malware alias:	Siplog, Fareit
Confidence Level :	Confidence level is high (100%)
Is compromised? :	False
ASN:	AS203320 TURIEN-AS
Country:	NL
First seen:	2021-05-17 07:45:23 UTC
Last seen:	never
UUID:	d69bfa23-b6e3-11eb-b17b-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	Pony

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-05-17 08:30:15	25832fe49bdd88f0d144932c89d6a0733a6b062e351b85b00d539a073907aaca
2021-05-17 08:25:29	b87d780b0d063e1014c441c9021ee646d374e16292960c1a215ca510e0966e5e
2021-05-17 08:15:20	67fb5e316328f2858c37ae08bf7767a850ba702b6c767d3f03baa94ea8fe6e90
2021-05-17 08:00:28	a86aa748734925861a8e8589286a8f0a94053511e5a1a450a8631c69bc909b79
2021-05-17 07:50:13	86f838d9b079f3d19997ad650061876fce87fec77217e1e0c0466666869a8d61
2021-05-17 07:45:26	bb6fa92162ba45cd896605298c9d8f130c4ba205b153c206a28538cf69f3663d