ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://chem.buet.ac.bd/ox/Panel/fre.php.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2026-01-18 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	5698
IOC:	http://chem.buet.ac.bd/ox/Panel/fre.php
IOC Type :	url
Threat Type :	botnet_cc
Malware:	Loki Password Stealer (PWS)
Malware alias:	Burkina, Loki, LokiBot, LokiPWS
Confidence Level :	Confidence level is high (100%)
Is compromised? :	False
First seen:	2021-03-28 22:55:24 UTC
Last seen:	never
UUID:	aeb58ef1-9018-11eb-858b-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	Loki

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-03-29 10:05:14	a1b2f21597f29eb7a637a8d5bc717abdd8a532724db22c41dcfe1806f8e6fb36
2021-03-29 08:00:30	a0c19d0a4b1083074781fec5997bcb590d1a689f964416952f53943cee8ff16b
2021-03-28 22:55:27	87c0c8cd2aaf759e54320b40b066705fd95d52b7ab08f3d194df8fc9930b91d4