ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 45.15.156.8:16839.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-10 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	872357
IOC:	45.15.156.8:16839
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS211409 PrimeFilter
Country:	MA
First seen:	2022-10-08 07:30:53 UTC
Last seen:	2023-08-01 18:02:46 UTC
UUID:	245208d8-46db-11ed-921b-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-10-08 07:51:01	6069d1c32fc6a41904891daaba7ccc980fc18ea2e58701f94d0e2de77464eb9b
2022-10-08 07:50:56	177fbd109bb143efcbddb2ff8fe7cc5d4af6931b5e98b23266e4e9031ef750f0
2022-10-08 07:46:06	25a2ad72aef6a19565b293099b3c2458c458f2f043aeaa9865a69ea447803d10
2022-10-08 07:46:05	d8df1cc6889413247f6687f6e4d855c16ea50ccbfe033d570197af08a89f9415
2022-10-08 07:46:03	814701cde629498ac86253e7295c5ba8b83cb5bc02963033a13c8861cc5e0579
2022-10-08 07:46:01	d29ea07500b6f42ed5338251ef782ed33433ae72bbac8e7f32b21bd58733cd66
2022-10-08 07:46:00	3a90b8dcfe41655dd7a6c050e123b114a008ffb2a49c127e0e4d8f300bbaa2d1
2022-10-08 07:45:58	c310bb35c0f20588737406c3611e3cf117081bc1c43f8e8ca92c9b54da539d3e
2022-10-08 07:45:56	d25320b65e367248738980d4418603f0956c711302d5e7a145974d27588ab734