ThreatFox IOC Database

You are viewing the ThreatFox database entry for url http://legend0.ru/cfg/.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-16 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	8849
IOC:	http://legend0.ru/cfg/
IOC Type :	url
Threat Type :	botnet_cc
Malware:	Taurus Stealer
Confidence Level :	Confidence level is high (100%)
First seen:	2021-04-18 03:00:11 UTC
Last seen:	never
UUID:	30e52e20-9ff2-11eb-a134-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	TaurusStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2021-04-18 23:35:31	50bd910698476cea1b75d0290d60445b8e6afb51e4fc1dbef0d11b16ef799357
2021-04-18 23:00:12	d26a98d84423d1b79e2f01fe69e09c3fe65841ceb59c1c36b12b84aaafcb77e9
2021-04-18 22:10:08	77d58783013a7d18f57937c53e5ac21840df059a8119b47c5c68dbc3a4809013
2021-04-18 21:35:34	00a4647a53a0366092f6ee9571244ca44546e8b92998e654c4168ff1cccb439b
2021-04-18 19:50:10	47b53753c746c7f218f59e32ebdf9e563d50a0eaab3e35c04e6a8e986eeebe36
2021-04-18 14:35:44	0d9b7c9cd4ffb270fd1db3a421dbb657811fc34bf3437517e8e574131839c42b
2021-04-18 13:10:14	ad692da30708a48f79ec4ac1e1dcbe70ef2da368e704a019b70c410ce610daef
2021-04-18 12:40:07	2713778531071a2f5e9d1166b2e55ed95afeaaa7b839bd504c7453448f583cee
2021-04-18 11:05:10	6c5d7642a58d60f603a1931f20977219becef21e957641a250c272c3fab74b2d
2021-04-18 08:55:12	b2e0a2a4ee3ca452cd290a72cd11f0fe2e178ca8566badd578377fa211aa59a8
2021-04-18 06:25:12	b46b850653845d1f4f228cba48ef413daed75df4d130978d7a4ac00059f63e66
2021-04-18 03:30:14	a423314d33b74a166ce89ccef59bd5da0b25a6cfdc4ab59ac0fe157dad3082cd
2021-04-18 03:15:10	bc5e3b9e7638a68bbb36387281fedc1bedb12d67575b9242a47c0bf0c8f3c265