ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 193.106.191.204:23196.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-11 01:15:02 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	520635
IOC:	193.106.191.204:23196
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS43260 AS43260
Country:	TR
First seen:	2022-04-17 11:15:52 UTC
Last seen:	2023-08-01 17:59:39 UTC
UUID:	be744dea-be3f-11ec-bfce-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-04-18 11:05:14	226d3b7a5e95c915769ebbd4f0de3c165440040dc2a79838a86c58e36ede3965
2022-04-18 11:00:28	0563068f0db4ecdc54f3203b867c20e51d3babb476820cd5ea6f5b50e1af37c9
2022-04-18 11:00:25	27258ad331c10ea06d27142ed71cb818e37fe30da95f2c93edebb051ec474439
2022-04-18 08:50:23	b5c2766ed1e7a6a04a9cca64a805af559185ed978769eb5c19f681207b933387
2022-04-18 07:55:33	86d557bb62a720e7f83c1792f5687aa36c6165d7738103d9bbac684f1734d1ad
2022-04-18 07:00:55	06db1123138ad9855b6930281c63a49a6e9230e8f0a568169a97869e87f730e9
2022-04-18 06:25:33	2aa81d29228233060fc8724f1aff157997a4238af33964f7415b3445e2a950dc
2022-04-17 16:40:53	1617641af757658d673d4111113bcb7f47604f4f00428f1d96c2f9ba5751c48b
2022-04-17 16:20:56	5b98e6a1bb630a07e164f1db3c5d1dda1624a33304f255b9b4b2baf15597b963
2022-04-17 16:05:58	452cb72cb4452aade319d85adfd058f86cce3bfa57338b773daa75084634e644
2022-04-17 11:25:49	faaec90e9f7f830f51a721f108b67f31a918cb89d3f5745ca339a0d2b3f4fbca
2022-04-17 11:15:55	3b7b44dd7b962d287957a7f912218d56b224e743cab832db0114e69fb329387a