ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 103.89.90.61:34589.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-10 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	842491
IOC:	103.89.90.61:34589
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS135905 VNPT-AS-VN
Country:	VN
First seen:	2022-08-11 08:40:27 UTC
Last seen:	2023-08-01 17:56:09 UTC
UUID:	3fbf6663-1951-11ed-b356-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-08-27 16:35:46	00c0934af824603bef01ce8a5d9fcbd0e97432c877d40cade42fdffdfb5175e0
2022-08-12 07:20:13	1d4954ca060b4eaec6ae327a5c7ab379ea6892b591858d0d03de67ccd87de996
2022-08-12 06:50:17	30bd7de6bb1a1ba574999d7a6f4e3c8f20b9e4e6f477d4dfb3bc47269bf6b441
2022-08-12 06:50:15	c33aec2527c88a003a6073ee31c1fec0cc3fea40b40f5b1170f67ea5c0838568
2022-08-12 06:40:15	8e5ea2bc3b2e0b05700912fb4a0d2c7bfb74ca0f31d273948ffe4fc3f584461d
2022-08-12 06:40:13	2f2d4587b0faf105a6d992856d7a92c03f599b68b84bd41b8c2cb32419b90a47
2022-08-11 16:50:32	ba1b8a45f3fd75c0fdef2e1f7bdfd291cc226e6f02f76a8e5b8266c435b32762
2022-08-11 15:20:33	b503e95080871d70f3a758124d473ed31a4ede3d2e87d252d3bc878868274023
2022-08-11 13:45:33	7ad2ecc56160b66356e7b1c0a237bbea3a687e100b3bd9a14c4b4a23bb095d05
2022-08-11 13:26:21	9a62e6ee0e71139a8e68a6092c27deb32077a27980c767a44cd5138ffcdca837
2022-08-11 13:20:32	9f6b69057e19a7fd08aab0b2df861a65337207dcfac2d6fbd0d1c0a2b75670e7
2022-08-11 09:00:31	ba66c7a46a35c1b38aa76a199ae19a65674786771b153e0fadc62fcd28367396
2022-08-11 08:40:28	f3d62ca6b2dfd77bd362dc1f4ec6e99bb43302e82583e6e8dce38df9ea1f6fe5