ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://expl01t.tk/_Defaultwindows.php.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-16 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	839397
IOC:	http://expl01t.tk/_Defaultwindows.php
IOC Type :	url
Threat Type :	botnet_cc
Malware:	DCRat
Malware alias:	DarkCrystal RAT
Confidence Level :	Confidence level is high (100%)
First seen:	2022-07-25 01:15:29 UTC
Last seen:	never
UUID:	45c05ee4-0bb7-11ed-8d5b-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	dcrat

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-07-25 07:45:20	2682b3aabbe5d28685aa5ed273b3260e0cc87a3cae1cd29a9d212e66d16edde2
2022-07-25 07:00:22	eaf877b52975baa11069f182a50c1bcda8918177a35df15bc6ef3067bd1783b7
2022-07-25 01:15:31	b2c85a99c33397672000be83655af8dea7f8c7faa9c2714bd13249d835871de6