ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://116.202.179.139/1375.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-10 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	848397
IOC:	http://116.202.179.139/1375
IOC Type :	url
Threat Type :	botnet_cc
Malware:	Vidar
Confidence Level :	Confidence level is high (100%)
ASN:	AS24940 HETZNER-AS
Country:	DE
First seen:	2022-09-07 16:09:56 UTC
Last seen:	never
UUID:	84262413-2ec7-11ed-ae73-42010aa4000a
Reporter	crep1x
Reward	5 credits from ThreatFox
Tags:	Vidar

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-09-08 10:00:42	7c94817a7427284e28551c2864185e26ea23dffa69f8e212289cfa039faae0d4
2022-09-08 10:00:40	1f71d52bc7b8d2a3170e913d1aa562207216c8c962278874aa7b0126674ffe73
2022-09-08 10:00:37	aff93a8e6265ae3f03f5a2faffb22b720a69e9948de001246cde0c7099ae05f8
2022-09-08 10:00:35	438c244c741ccdb5e904027ba6879d37584b2ffd427dc0dc6a852f910ba3598f
2022-09-08 10:00:33	deb84ca18a7f3d3d1ba4fad9889ebac51ec34e7897fd9b17cefffdec154f29dc
2022-09-08 10:00:30	3575aeec9e4e351ba9c03ceff4ace3a4e2bb44c5f8148b680f00d195d8eb97f9