ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 104.192.2.242:15772.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-08 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	866104
IOC:	104.192.2.242:15772
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS27176 DATAWAGON
Country:	US
First seen:	2022-10-03 08:00:11 UTC
Last seen:	never
UUID:	67ec3c49-42f1-11ed-80c0-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-10-03 11:00:15	ee8601daf173de7abca7dbe5335a6d9511de07fa40cdec51d0a82246575a35cd
2022-10-03 10:00:16	bbe0f79b031a4f2c83578fbe30e1f51881b2bbb1ec53051d785f1f4bbbb238c7
2022-10-03 08:50:15	4d2921f38a5bbc12057aecb0e0a370ecf21035428fa2a8508f03023aabde3754
2022-10-03 08:06:19	d5e5f7d079b216078282d955c2d625bda28ca2a4de774a46ab571c388d897dac
2022-10-03 08:06:17	e98425cc4d2e9f27570c6df58a67abb8e9e05f0c84359a556958a4a67c1b3e53
2022-10-03 08:06:15	a28b2614336ba255b5c7d33b2a7eb8b29ffedf766871c2a5be8e67270b32b0af
2022-10-03 08:06:13	2d4a9826902438e97fd11eac1fe05819dbc649be0e006b849336079fff0ccf18
2022-10-03 08:06:12	b28d6b994dcacc0d94a798011c1f7f6ba7bb293e0260159b60104620f320e01c
2022-10-03 08:06:10	b99e21dce83c8184c7396d9b0fb284ce0ce662a1cc9d1ad59448000eac1bd806
2022-10-03 08:06:08	4296f6d95543d642919a532ad639b2f0e1e0d004f80c1abafdfea4f02c10aee8
2022-10-03 08:06:06	950d626cdf9aa112d51ab6464231f153a8b72c7da5d2de8ffabbe86f1f356f84
2022-10-03 08:06:04	d491d97206c0e0598e86d140c784733b8ff652f59056cf7eba2aff2bbece580a
2022-10-03 08:06:04	be10cd4e17ae4f050049335d366759a1d79bf30685a82c7931672b7cfdd34e84
2022-10-03 08:06:02	3b27cb347865bcc539b7faad94c6ed0d383e2fec84f2ec6c5d32bfb83ba03def
2022-10-03 08:06:01	becc55f0da56190c49c0b6043e9e7edaf68621331434f23f037f99a41d476ce0
2022-10-03 08:05:59	c58407513465a4e620fda63cde906e624bcdc0c326cd0f7c6b68bda34ee38c4b
2022-10-03 08:05:57	6a7d48f08212a61d9fc4202234cd290a42fdd8eebbb53d90c57dc971a159caf3
2022-10-03 08:05:56	bacbbc495f8feb32cf7634b1e66c448cacb7f5f91d18e5d2682a6e903adb4744
2022-10-03 08:05:54	66db6bba6cd5a20a84720a71783077ed39830a52b6231ee42508a17805899d80
2022-10-03 08:05:52	9d23a234dbe5c77bdb7ef8c15e72dc31de7cce7a296ba4c6021fa38c860b6aa6
2022-10-03 08:05:51	4911e25310acfe3efe4ed72720cdfe857a33dc6c0dbaf94120858aedae58baf4
2022-10-03 08:05:49	0f8f4678218df508896a6e58d5d206adb8991f8cef033dfae733d5a2a12a2fe6
2022-10-03 08:05:49	8862f70691d3e4fd9993c7bec511b4829403f15fba9b7999708edc372da0103c