ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 89.23.97.13:23489.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-08 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	851380
IOC:	89.23.97.13:23489
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS56694 SmartApe
Country:	RU
First seen:	2022-09-23 21:35:28 UTC
Last seen:	never
UUID:	a4ad3584-3b87-11ed-ae73-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-09-26 17:38:22	497acacc3f41d00e6bf7c55b2f2eed21c07dbd5b1396081564ea2d887683c062
2022-09-24 18:40:21	585e486d1ef37239d665b34173ff8a06b4955cb05535536d0e90f1782e39eeaf
2022-09-24 18:10:19	c117ce16000b56b863f7e31e39ce8df908c2fa9b83bea8d1be9f8051af128a77
2022-09-24 03:50:28	da7fb041369901ab8338c8858f0ac45d6af81daf1e0ed39b65ce5f801d58a983
2022-09-23 23:10:30	907f52dc05bfac1a84af0961d64891c8cc2fb6df4b3952de925f1330899896c0
2022-09-23 22:45:40	d5b8fc2e865b0f11a0bd1610be79d87cfccd7ad1dab6f525fe99e19ceabdb106
2022-09-23 21:35:29	eee254dda1325f5cee8e909d0bebf802bbfe480d015b48f053c2f59d0da6483c