ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://sempersim.su/gj14/fre.php.

Database Entry


IOC ID:841341
IOC: http://sempersim.su/gj14/fre.php
IOC Type :url
Threat Type :botnet_cc
Malware: Loki Password Stealer (PWS)
Malware alias:Burkina, Loki, LokiBot, LokiPWS
Confidence Level : Confidence level is high (100%)
First seen:2022-08-04 02:55:46 UTC
Last seen:never
UUID:f06702b1-13a0-11ed-b0d2-42010aa4000a
Reporter @abuse_ch
Reward 5 credits from ThreatFox
Tags:Loki

Malware Samples


The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)SHA256 hashBazaar
2022-08-04 02:55:48 3bd84b2195c1b528068f3c119a64ed37bf1b942bc629979c6e0c7a34a053dac8