ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://95.217.246.94/.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-09 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	843458
IOC:	http://95.217.246.94/
IOC Type :	url
Threat Type :	botnet_cc
Malware:	Arkei Stealer
Malware alias:	ArkeiStealer
Confidence Level :	Confidence level is high (100%)
ASN:	AS24940 HETZNER-AS
Country:	DE
First seen:	2022-08-16 03:15:36 UTC
Last seen:	2022-08-16 07:36:01 UTC
UUID:	b24c0e5f-1d11-11ed-ae73-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	ArkeiStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-08-16 19:15:14	0835469d2ef3f99105994af135febb97a3f1ad260420aa5ea1712effb8c7224b
2022-08-16 18:55:14	6f0d21c7e492837cadb64acecb5a714a9290a4f0c522c343d836bfb60114749e
2022-08-16 18:40:13	60d6eb4cabff6bede1fffaf440d6abbc50ba9c690422e88b26984c44eff35f19
2022-08-16 14:45:41	65341b1f7f4018e163e564b546012d5bfa41a70c9b9926a0b48781ae4e3f9ec3
2022-08-16 07:15:30	c1b694fc1a8292381f26293bd47a8093c49d48874937be131fa2e8f35e847b58
2022-08-16 03:15:37	29d877367db8db212c287c1d00ae96b837c492a7053d945a16db52ab100eb514