Dedicated IOC database focused on threat actors infrastructure based in Russia⚰️ and Belarus🥔 (RU/BY), providing up-to-date information on C2 and malware distribution servers for all interested parties.
Read our statement| First seen | IOC | Malware | Country | Tags |
|---|---|---|---|---|
| 2025-01-06 09:31:55 UTC | 147.45.47.69:4433 | Cobalt Strike | RU | c2 CobaltStrike shodan cs-watermark-678358251 |
| 2025-01-06 06:34:35 UTC | 195.2.73.29:80 | Unknown malware | RU | c2 censys AS48282 VDSINA-AS Loader NeptuneLoader |
| 2025-01-05 16:03:37 UTC | 89.23.99.112:4782 | Quasar RAT | RU | c2 censys RAT AS56694 quasar SMARTAPE |
| 2025-01-05 12:17:50 UTC | 94.159.113.15:31337 | Sliver | RU | sliver |
| 2025-01-05 12:17:54 UTC | 89.110.97.72:31337 | Sliver | RU | sliver |
| 2025-01-04 08:11:10 UTC | 89.169.4.44:47925 | MooBot | RU | moobot |
| 2025-01-03 16:03:45 UTC | 51.250.76.242:80 | Bashlite | RU | c2 censys Gafgyt open-dir YANDEXCLOUD AS200350 |
| 2025-01-03 16:03:36 UTC | 178.124.176.209:8088 | Unknown malware | BY | c2 censys panel UNAM AS6697 BELPAK-AS |
| 2025-01-03 07:15:13 UTC | 45.141.86.123:31337 | Sliver | RU | sliver c2 shodan |
| 2025-01-03 07:15:18 UTC | 5.252.176.78:31337 | Sliver | RU | sliver c2 shodan |