ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://ugll.org/fhsgtsspen6/get.php.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-13 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	548952
IOC:	http://ugll.org/fhsgtsspen6/get.php
IOC Type :	url
Threat Type :	botnet_cc
Malware:	TeamBot
Malware alias:	FINTEAM
Confidence Level :	Confidence level is high (100%)
First seen:	2022-05-08 16:55:30 UTC
Last seen:	never
UUID:	aad6b14c-ceef-11ec-ae87-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	TeamBot

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-05-08 17:50:52	50196dfa833bc753f0c8a4b7f17c6462ad3e7f2eee41b52943f2eadade94ce53
2022-05-08 17:45:47	179fc476ebe71d6ff0c17ad5c58f1cc941240946410425a03ab6b5d2b18be68d
2022-05-08 17:45:44	efdf5e6a2dcd17453250f5a2cd565a8ebbf0a937e3f033e6a494776a2c48c1d2
2022-05-08 17:45:42	14f1de4353fd4b4860fde93e1f33d5ff3ccd0a1c0eefaafffe535756b9483bbb
2022-05-08 17:40:42	caca8f67d188c05d277c361ba09ccea123651f092cbed2cdf9d48e9ab4df118b
2022-05-08 17:40:39	1aa3ffdc68b849440e56aeb75c8acf537dcb02fe73936ffa7f0d73e7f6a9881a
2022-05-08 17:30:51	739fbb10e4751ce3058bce202286f7f3417a80ce666fa6532ca688f72d7f9920
2022-05-08 17:20:41	408ef0ddc11837ab3ce4e1bf4898c7cb7968440819097316173c003a52c83bea
2022-05-08 17:05:37	8300461fa790545afed415e391f96ab3f324538044e099935c34c033ad2286dd
2022-05-08 17:00:38	72c220bfb4822d07cc891ae46e48a79fa5efe5d4c53363671d937d9127a0523c
2022-05-08 16:55:32	c0597dca23affa33285961659920a869b00eb52693315c716c90f2c2894a7306