ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 188.34.179.139:24452.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-16 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	453684
IOC:	188.34.179.139:24452
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS24940 HETZNER-AS
Country:	DE
First seen:	2022-03-26 08:15:55 UTC
Last seen:	2023-08-01 17:59:29 UTC
UUID:	f5afd65f-acdc-11ec-8c1d-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-03-26 14:55:47	21e24220aa645b202184b2b6c637daffb1ebf14ade9a24d5de09b0e342fad6e4
2022-03-26 11:35:52	ef48aebc0f1e77208bbcd5206c58678bb1181994507d1084e1d324dca9d5d3b8
2022-03-26 10:00:57	c80f5360d6e3484ff09bd86186baffa361803879e40ceaa9af984cdf68ffea5b
2022-03-26 10:00:54	75e500ff21943d18fbbbccb4101f085ab7eca1e8987a859140ec791382a2cb08
2022-03-26 08:15:58	756e3399f2905aa3358e4045185fad0c6902a91d3995cccc0198f3b056323f34