ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://2.56.57.50/purelogs/index.php.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-16 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	832202
IOC:	http://2.56.57.50/purelogs/index.php
IOC Type :	url
Threat Type :	botnet_cc
Malware:	Azorult
Malware alias:	PuffStealer, Rultazo
Confidence Level :	Confidence level is high (100%)
ASN:	AS399471 AS-DESEQUITY
Country:	NL
First seen:	2022-07-13 06:05:20 UTC
Last seen:	2023-09-27 13:59:55 UTC
UUID:	c65b1322-0271-11ed-b728-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	AZORult

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-07-14 05:20:10	3dff06d73e16ec5512b856f9367ad4eb892244daa07196ddacdba5f48885c8e9
2022-07-13 09:50:25	316e1c7d6a42e8ae84272be9196dca9fa1ce72d81c9cd3904b81143f9cfe93f1
2022-07-13 09:20:26	8955fde86ffc02568ef3eedf2b552a9024f1fa5a1af1ab4cd8bb4066b943f9ab
2022-07-13 08:00:26	fa91e0922aeacb8b4bcaaff0f997090951c5e3ca7c08e071c8d42097a9434836
2022-07-13 06:15:25	2a9a87a13f792226303dc596156f5d149d8fca68e015481c335bc07b5e4cfc32
2022-07-13 06:05:21	dd20d4db5bef83326e9534697cc7d0f9d1f458e533125597239c7902012cbb6d