ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://94.130.58.199/.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-12 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	57564
IOC:	http://94.130.58.199/
IOC Type :	url
Threat Type :	botnet_cc
Malware:	Arkei Stealer
Malware alias:	ArkeiStealer
Confidence Level :	Confidence level is high (100%)
ASN:	AS24940 HETZNER-AS
Country:	DE
First seen:	2021-05-23 09:20:29 UTC
Last seen:	never
UUID:	1e0235cb-bba8-11eb-b17b-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	ArkeiStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-05-24 04:50:12	fba700af184835ef164e28b6e5fc6f18e4fece1ae08d115c54bbe072bc6a138e
2021-05-24 04:45:16	3411ffa29608d19dc77f53571010425fc94abd5dac92d6c2abffab6eb468c0ea
2021-05-24 00:25:25	e6e11a92390d1e01775514d1a4f047f5b94471070a07bf82b6e9fe5c547d55a8
2021-05-23 20:25:21	3b36f51b91f67c01015777197970e7ea37e291ff8b6401a853e9582b0a1d90cb
2021-05-23 17:15:30	13282c40dd66c53e866c60202f428781cf9562bb0f02e30027ebb7fb41efb5b8
2021-05-23 17:00:31	aa9be79c40da851c806a4cbd196aad2731e57090c5c4e0bb107437073e0ebd11
2021-05-23 17:00:29	7a63dfdb3c679b747aadbd3855f97e9fb00a7cffdca72a937f63bb167dd52f20
2021-05-23 15:45:26	8358e817e423f16dcdcd3f213229f7b7b63de4a1ccce5f7ab07997a57183f758
2021-05-23 15:30:34	864ef1321215c0dad7c8677e3c18942b111468c63358475baa71fb1679c25096
2021-05-23 10:10:46	dcc67d946b8fab4a036ce1e8a2f200fb446fb22248a423e15cc4234eaa2c0ca1
2021-05-23 09:25:46	ec606c6695e9c2716c8b3eb6c8b45d085caa03658274366a846ad37c452bd65f