ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 49.12.42.196:23783.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-12 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	68303
IOC:	49.12.42.196:23783
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS24940 HETZNER-AS
Country:	DE
First seen:	2021-06-01 06:01:23 UTC
Last seen:	2023-08-01 18:03:32 UTC
UUID:	cb0c20ed-c29e-11eb-b17b-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-06-01 16:06:05	4deb8887fb1ac1b6cc881ad17c732f934a5673d0f15184acfe5678af8eb2b285
2021-06-01 15:36:28	b4ea43c602bde1888827885b6826e461b3e6e449ae45f62d64834e2eb0308635
2021-06-01 14:47:28	d8ed5b288ac2b5f908d544a8837d20a5c30464e1f0d980c9c2b974533c9d1e35
2021-06-01 13:52:03	37a8c9dbb2bd8c64a1fe0e1d72e812db8e54411e2a97598ead5555fd0b1127c7
2021-06-01 12:47:01	fa7f1e6f6c3b9eefa2e5729e3273e28a7f9a4a1ccb30d81d5841dc814de9488a
2021-06-01 12:12:07	0acd7696d5dc482aa3b4110fd60c6b9f2df88545f6cf9986714a984673965249
2021-06-01 11:32:07	4214be5d965b37b39719e498f254a788bc458c9e943e1d99e7a5b781892d237e
2021-06-01 10:12:21	ec835c15a9000e86553ebd1ec3a1cabee067cde9683b526e5dd09a276e1cd50a
2021-06-01 09:31:56	8868ce65c7fb73b3b89c48f97e16249139f94e759ff44d955e493f0651ae5f3b
2021-06-01 08:26:58	780aeaf7c9c4a6c1dbe53f2861c9ed2eb73790368dda106d1eee057fc8e33824
2021-06-01 07:46:49	971fbe867e2548d5d0261218d418128db71f67d0cb0aea0bec55c34296442d87
2021-06-01 07:41:49	a481ea6b643ad753a5538ec13c9f270e426e2a389c78ed9f48a0616f6a69ef4e
2021-06-01 07:41:46	e87c87c4a26902bc8bbd9993162a98bfb67bb20f9b06cfc0084f5301bec9b816
2021-06-01 07:36:46	d2e0e8c973c2e376d189271f581d1ffec730f8ca41dfc1e3d9ef0b675366ee9a
2021-06-01 07:31:54	1f090615b025ca978616652c41369f2331100c7650dabd92ee0fa650f29de47d
2021-06-01 07:11:25	7ff8de714cd1be1409b0c13a946c21f945a0bfdc8fd7e0b1a0f4e20f3ba0e80a
2021-06-01 07:06:45	aac29d1263aa4cd9db1afe81a56218321daf3d610eb972a2365379b71ab5c392
2021-06-01 07:01:37	beef9882631d740d3cabb7ce14f299c1fc0e47e6cef65ff7e023ac4437d067f2
2021-06-01 06:51:47	69c0a77de39fbf7cc3dfcdd29ba803f0aec498175091594c12a3341e05e32914
2021-06-01 06:46:48	9c57d0fc5a49debe9dbb49bfebe011bcf249542f6bbd4eefd41c75c3b5ff7d51
2021-06-01 06:11:33	0eb930799c4e9edafc01531441539a136e4510177ba8c934711c7743f1238f72
2021-06-01 06:01:26	65f74567c2faff6c1005d715a0525fac1844809a853006e3298a0834b804e188