Dedicated IOC database focused on threat actors infrastructure based in Russia⚰️ and Belarus🥔 (RU/BY), providing up-to-date information on C2 and malware distribution servers for all interested parties.
Read our statement| First seen | IOC | Malware | Country | Tags |
|---|---|---|---|---|
| 2025-01-16 14:17:15 UTC | 185.84.162.125:443 | Havoc | RU | c2 AS9123 censys TIMEWEB-AS Havoc |
| 2025-01-15 19:54:05 UTC | 80.64.30.50:81 | Cobalt Strike | RU | CobaltStrike drb-ra |
| 2025-01-16 07:21:32 UTC | 193.161.193.99:44548 | AsyncRAT | RU | 15January2025 iocbottest |
| 2025-01-16 07:21:36 UTC | 193.161.193.99:64240 | AsyncRAT | RU | 15January2025 iocbottest |
| 2025-01-16 07:21:55 UTC | 193.161.193.99:22 | AsyncRAT | RU | 15January2025 iocbottest |
| 2025-01-16 07:21:56 UTC | 193.161.193.99:53757 | AsyncRAT | RU | 15January2025 iocbottest |
| 2025-01-16 07:25:12 UTC | 193.161.193.99:3334 | AsyncRAT | RU | 15January2025 iocbottest |
| 2025-01-16 07:25:34 UTC | 193.161.193.99:41111 | AsyncRAT | RU | 15January2025 iocbottest |
| 2025-01-16 07:25:37 UTC | 193.161.193.99:80 | AsyncRAT | RU | 15January2025 iocbottest |
| 2025-01-16 07:25:53 UTC | 193.161.193.99:35558 | AsyncRAT | RU | 15January2025 iocbottest |