ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 51.89.201.21:7161.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-08 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	852070
IOC:	51.89.201.21:7161
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS16276 OVH
Country:	FR
First seen:	2022-09-27 19:30:52 UTC
Last seen:	2023-08-01 18:03:51 UTC
UUID:	e6167063-3e9a-11ed-ae73-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-09-28 17:37:11	c3133fa0480d9bf0beff04059da58bbeae895196edba830ed00cae3c20391d10
2022-09-28 17:16:23	e4fb39b3f6aa19028ccdd531437e7994a9b6f62b317adfa3edc16ba51e57acb1
2022-09-28 14:45:43	5ec3a8d538cf38f9be9ba8419dee05bf711b70baf155ae6d6728ab15444fd24c
2022-09-28 14:36:18	8c8774aa92f0237e9a8ffbaa0a88a8650c0bc4b465f0296c94e14f58ac97fc7f
2022-09-28 13:20:16	acaaedee4683ce2d097a80bc6d6815408d48b809f0df56ca653319737748dc23
2022-09-28 11:35:40	4215d9dfa48b9713f96a7f22b19340372ce720071d9d0fd8b575337e8d9a7558
2022-09-28 07:40:35	2d57d4c0615a0589ca852ea3c2fee366ca435039eb961065024c43214feafcee
2022-09-28 07:35:32	91c71931cf8c74ba9c417034c0317d8e8e71f9917aaacb11e86b532091f0caef
2022-09-27 21:46:02	710b72200d7fcc5e2aa599af3b468f676fed57b97cef50570a53a61bf14abfc0
2022-09-27 20:26:51	8fd916f77448322da50802bc0fd2ae0492932f42c742f9b996a56ec66f13d564
2022-09-27 19:56:00	16842d889bdac3685118f3ce1e2ac6e352ade59800f46fbdd4cc60f586502feb
2022-09-27 19:30:52	3dcd9de2431cb3d7046ed37a70a7b67749ad3f27ce29fabb95667731ae43a9a0