ThreatFox IOC Database

You are viewing the ThreatFox database entry for ip:port 193.106.191.21:47242.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-11 01:15:02 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	952418
IOC:	193.106.191.21:47242
IOC Type :	ip:port
Threat Type :	botnet_cc
Malware:	RedLine Stealer
Malware alias:	RECORDSTEALER
Confidence Level :	Confidence level is high (100%)
ASN:	AS43260 AS43260
Country:	TR
First seen:	2022-10-28 09:21:01 UTC
Last seen:	2023-08-01 17:59:39 UTC
UUID:	d717da5d-56a1-11ed-b4b2-42010aa4000a
Reporter	abuse_ch
Reward	5 credits from ThreatFox
Tags:	RedLineStealer

Malware Samples

The table below documents recent malware samples observed that are associated with this indicator of compromise (IOC).

Time stamp (UTC)	SHA256 hash	Bazaar
2022-10-29 07:40:13	8f297aedb0e0cc3234cd5ecf9374c6f920946ba4c8399d5fd9fc79f236ed8e94
2022-10-29 06:00:14	5869e67a2bae38141bcff572a8b21f30f61edcc4481e4ff5aa6d66dcf3ad98fa
2022-10-29 05:40:17	01cbbf38d827f502493dfd10b400602b52e094e77a30f0b4c68629d64f411a0e
2022-10-29 05:40:15	7581f7b63ccef4724b9ec73a2d0cbd8533299daa1e878ca0e4bdbac43a79edc0
2022-10-29 05:40:13	db28608492f759538b2c06f6ff15a4bc3d1ec49a0412252761e7ba872d71e764
2022-10-28 22:15:20	5381690d532b1bb3a23cb7f58bb769b6ece2105541f93f2bd4b33621d2c89cc4
2022-10-28 21:05:20	1d43def9cdf81d689d8de4b6512cd596a0f7958c162bb545c20328fdad42e40b
2022-10-28 20:05:19	08bbf1d9d4392e56b7b6da72baba11512033cf6afccf265daf5f29efd969101d
2022-10-28 18:26:02	af6c60c80c760d3279958f31d5648b7f7fbaf3e4b9f50775dad2a15828f5e5a7
2022-10-28 16:01:02	07c6514e6b5ec6e2b9777aa411aed5a162d3395cf6f8ea52a27985d0c55fe864
2022-10-28 14:21:07	5cef9640646eaec46b8b42280f606155a0880cf815120bc022dce5d1ac324ff4
2022-10-28 13:35:57	99b3b23ef0fa2a9751c20b376f84f01968a1828ec65dfb543d6344d8c1f90e03
2022-10-28 12:46:00	238b438e31dfba8b3d9b775b175e222104aedb71491e8ead7271f7d5676cc9c4
2022-10-28 12:30:57	343dbcb52c9879c5b739c8356ce1a369fd8ef4e6c268c576bef998bc3dc82020
2022-10-28 12:06:00	3483be26d6bd55acbb7318e06984bfc417c7e6520a5f1cbff7c83cadad635e95
2022-10-28 10:55:56	11165cc19fe8a06b86ef467a5fa36e6db600d76029ab99cac69f16ebf68043da
2022-10-28 10:10:52	ff3f4e86a9e5650e067e2513908eddaf7be20d68aeb24ec8714fcab91a35a747
2022-10-28 09:25:58	6d28e2d6c8edbd2c097126c1ef18898e029e4fca0ffd479d4bb0d4bbd57b97d5