Dedicated IOC database focused on threat actors infrastructure based in Russia⚰️ and Belarus🥔 (RU/BY), providing up-to-date information on C2 and malware distribution servers for all interested parties.
Read our statement| First seen | IOC | Malware | Country | Tags |
|---|---|---|---|---|
| 2025-01-22 15:49:35 UTC | 80.64.30.50:81 | Cobalt Strike | RU | CobaltStrike drb-ra |
| 2025-01-22 14:49:56 UTC | 80.64.30.50:81 | Cobalt Strike | RU | CobaltStrike drb-ra |
| 2025-01-22 13:50:09 UTC | 80.64.30.50:81 | Cobalt Strike | RU | CobaltStrike drb-ra |
| 2025-01-22 12:49:07 UTC | 80.64.30.50:81 | Cobalt Strike | RU | CobaltStrike drb-ra |
| 2025-01-22 11:50:03 UTC | 80.64.30.50:81 | Cobalt Strike | RU | CobaltStrike drb-ra |
| 2025-01-22 10:50:16 UTC | 80.64.30.50:81 | Cobalt Strike | RU | CobaltStrike drb-ra |
| 2025-01-22 10:50:04 UTC | 88.218.170.171:31337 | Sliver | RU | c2 shodan sliver |
| 2025-01-22 09:49:58 UTC | 80.64.30.50:81 | Cobalt Strike | RU | CobaltStrike drb-ra |
| 2025-01-22 08:47:33 UTC | 80.64.30.50:81 | Cobalt Strike | RU | CobaltStrike drb-ra |
| 2025-01-22 07:47:20 UTC | 80.64.30.50:81 | Cobalt Strike | RU | CobaltStrike drb-ra |