ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 89.223.120.220:80.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-10 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	838088
IOC:	89.223.120.220:80
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS9123 TimeWeb-AS
Country:	RU
First seen:	2022-07-16 06:55:20 UTC
Last seen:	never
UUID:	42403e5b-04d4-11ed-b1cd-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-07-17 03:50:18	0248c7dde144960aa76ec19416622f8131878b97b3c0e36f0d401424ad8f526f
2022-07-17 03:15:19	f21a6eaf93ad0cd42964690cb42ead841b6335875b70fc07d57bdc43b857b1dc
2022-07-17 02:35:18	13b835381d579df8054a1e3bc90cea02c9258f577d2196f0eeae9aec3c3a0fc3
2022-07-17 02:25:17	7912637337d9220d156957c83269eb34b35ee21df62d9366d6cee43faa679d1e
2022-07-17 01:55:17	f35acea721a5a930a8b6b908aea00e727e444d7912f3182d80772463090ad518
2022-07-17 01:00:19	701ddd9f20c73127e1807cd301a9aad4f2ff3e6a057bdc43f2870e29a8e8f8b2
2022-07-17 01:00:18	fadccfb4e4f78b3fa9a789e7a39e044658f3d9fe85322d024397ec229ba7c974
2022-07-17 01:00:16	d55d9a6cbc820266e94b720da21de730f1c59015a00f35aef73bf523480c2d86
2022-07-17 00:55:15	9542b24f1b9c2e97e1ee50aa168a5de141d4a1148b1c1e243b3df7df38f30725
2022-07-17 00:50:15	49661934f83bb3ebabf3e5f8ee6299a4e293d598d92b4c120c2996744cb52a63
2022-07-16 20:15:14	bb35ee18dbde7b993e7023838092a6cd40fbf313576f662d5953b9f46f8ac3ed
2022-07-16 20:00:16	02368643b60836699bcb411c99e2128e28101dddb0b0abaa50c780472e8ba083
2022-07-16 19:10:14	f288d2fdaec7ef0e7051dbda9a9693b866171481194009c3ac04e07e2eb9c8b7
2022-07-16 16:40:15	df3865cb8587b8a226b80d18217edf02298648d2dc77c36299d2e9a4d4ad58c8
2022-07-16 15:10:17	8bcfb6fd1fd3f95410dc269069c9cb95eac2518b3a9b2eb2f3f957797a789729
2022-07-16 15:10:15	e07b6ac282e5159d5f34b1816286e265ef83150b3a15e3d52218ef2ab0634071
2022-07-16 14:25:14	8b94467a6cdf2a6ab77443ea4573ddd0e8f209f3e433cc0a322e170e7945aedc
2022-07-16 14:20:15	a987f700a5a840d4e907699c071a07868f840bb2eb12b4fffa265d12d81bc9c1
2022-07-16 14:00:15	40a676f5a87835f162a613a2b072cc6c9067ecd7d661564c7e31982ec82d360b
2022-07-16 13:10:13	c873b38b7f987fe5fdd77dc70adb4c5293be1538096f9e683733718b623ef509
2022-07-16 12:40:16	75e9154185d404e68a38f7f3bfcb0ade61438e910ff1bb1e0e790491a60ed6ed
2022-07-16 12:20:15	aff97bf7891782cdedcffb0f52c0ad168fc654e7c1a0e97e0de7cef8d6cb0145
2022-07-16 12:15:15	39eaab17f5339d91f09c2cf49512fbab9d14ed45914af5e7f417ff8c1410ae26
2022-07-16 11:45:15	82fdc2a52f7c3f5cb993f9189fd306a80ce43d6b4baa2c77f99d7f3d47fb1311
2022-07-16 10:15:17	b3954d1c138ab6df51925cd6153b2120f078eb0353e3a7ddf57c8dc357618af7
2022-07-16 10:00:15	41205d7c73b7acf02f1d87b0f8ecd5d2da0b5430b369d6631d2e34463106c7b0
2022-07-16 09:00:18	3767f79cd6257b3e746fd6b5d251932676a28d958f19334661c4db8113a140bb
2022-07-16 08:40:15	756618a5ff59650fdb911d1f2cd27b1be927c83076f5de9ef7beaacedc3d678f
2022-07-16 07:45:26	eb8c45aaec0a251b71ccb773360ed939171de7895157f4a3ca981dec1fa217d0
2022-07-16 07:15:22	2a5d48c192a37c4c5bfba8d0908b793563d81a6554826fb0945ad09dac212bda
2022-07-16 06:55:22	bb3fc2c2e7f03a347fc3e0081c620c859c622deba99bb451d5273d737699b936