ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://98612.clmonth.nyashteam.ru/nyashsupport.php.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-10 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	872020
IOC:	http://98612.clmonth.nyashteam.ru/nyashsupport.php
IOC Type :	url
Threat Type :	botnet_cc
Malware:	DCRat
Malware alias:	DarkCrystal RAT
Confidence Level :	Confidence level is high (100%)
ASN:	AS13335 CLOUDFLARENET
Country:	US
First seen:	2022-10-06 21:50:39 UTC
Last seen:	never
UUID:	eb227610-45c0-11ed-9bfe-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	dcrat

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-10-06 23:40:36	143e5f4c6eaa5d6a77a57286a7e09d99803987334274291c8fd7c1259f7bded6
2022-10-06 22:40:47	4c70bde948c86aa5a4697f1ac9285a611dbeb7f965e1c14b5a3e31a8ee856d8c
2022-10-06 22:00:49	1c8edce4a868257106013cc2c20f469efe7687f1d30476da7b74ceaa4122bd2f
2022-10-06 21:55:41	44deac78b00bf644a7fd8dd1ce54999cfe5552ac24a2c064d16dfcf3eb6295db