ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://ugll.org/lancer/get.php.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-10 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	548111
IOC:	http://ugll.org/lancer/get.php
IOC Type :	url
Threat Type :	botnet_cc
Malware:	TeamBot
Malware alias:	FINTEAM
Confidence Level :	Confidence level is high (100%)
First seen:	2022-05-04 19:11:38 UTC
Last seen:	never
UUID:	06377007-cbde-11ec-a357-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	TeamBot

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-05-05 18:15:37	af5a06c613c3c0f80530ace573e1f1f70f5cb811c22d3a818096aa9371e64ef2
2022-05-05 17:05:37	b056f0cc0015f03aca6d9884ef57a9aca014903f72dc0ce46749805f7bfd0985
2022-05-05 17:05:34	6463efd4789c770d191c9598c78f0ae5e45a997bee9ebbbcfca3fbba880f0cfe
2022-05-05 16:50:29	eb17d6c767eab942cbdea2f4ee08e53207365606d713ede533336b7f6310bab2
2022-05-05 12:00:53	df88af4e45114c998871c654fd2a3ecd28ee20928f04ff9bd5a19bd8b6b5816b
2022-05-05 07:01:38	5a51ed37569cbfeccfa669a1b3b5c4029e9e91e65112e18324ab66604f17fa3c
2022-05-05 05:56:23	bcd642198ca4283bdf07a711b45cc13abcd9666ab4bfb29c57a3d5538a4ccee5
2022-05-04 19:11:41	8d9493e963496c563f659e0d5bbf2bd112b9b69cd132c829cc717d5c69508164