Dedicated IOC database focused on threat actors infrastructure based in Russia⚰️ and Belarus🥔 (RU/BY), providing up-to-date information on C2 and malware distribution servers for all interested parties.
Read our statement| First seen | IOC | Malware | Country | Tags |
|---|---|---|---|---|
| 2025-01-16 07:26:34 UTC | 193.161.193.99:36206 | AsyncRAT | RU | 15January2025 iocbottest |
| 2025-01-16 07:26:59 UTC | 193.161.193.99:53068 | AsyncRAT | RU | 15January2025 iocbottest |
| 2025-01-16 07:27:12 UTC | 193.161.193.99:44454 | AsyncRAT | RU | 15January2025 iocbottest |
| 2025-01-16 07:27:56 UTC | 193.161.193.99:4448 | AsyncRAT | RU | 15January2025 iocbottest |
| 2025-01-16 07:27:56 UTC | 37.112.34.178:1070 | AsyncRAT | RU | 15January2025 iocbottest |
| 2025-01-14 12:03:00 UTC | 94.198.54.129:443 | Sliver | RU | c2 censys AS56694 SMARTAPE sliver |
| 2025-01-14 04:03:21 UTC | 45.141.86.132:443 | Matanbuchus | RU | c2 censys AS206728 matanbuchus MEDIALAND-AS |
| 2025-01-14 04:02:44 UTC | 79.170.26.25:8888 | Cobalt Strike | RU | c2 CobaltStrike censys AS43761 cs-watermark-0 SVSERV-AS |
| 2025-01-14 05:58:31 UTC | 89.23.101.77:1912 | RedLine Stealer | RU | stealer infostealer RedLine |
| 2025-01-14 00:02:41 UTC | 83.220.170.242:80 | Cobalt Strike | RU | c2 CobaltStrike cs-watermark-987654321 censys AS29182 RU-JSCIOT |