TF-1833915
high
📛 Threat Title
Mirai: ip:port combination that delivery a malware payload 5.175.223.249:6969
Description
Indicator that identifies a malware distribution server (payload delivery). IOC type: ip:port combination that delivery a malware payload. Attributed malware: Mirai (aliases: Katana). Confidence: 100. Observed port: 6969. First seen: 2026-06-19 05:56:47 UTC. Reporter: botnetkiller. Tags: Mirai, nc.
Remediations (3)
-
web:authn.edx.org
We would like to show you a description here but the site won't allow us.
-
web:pubs.acs.org
ACS Publications
-
web:www.reddit.com
We would like to show you a description here but the site won't allow us.
Indicators of Compromise (1)
Each indicator is enriched from the IOC database, threat-intel feed corroboration (Threat Hunt) and VirusTotal. Click one to expand.
ipv4
5.175.223.249
IOC database
- Type
- ipv4
- Value
5.175.223.249- First seen
- Last seen
- Attached to this threat
- Appears in
- 1 threat
- Description
- ip:port combination that delivery a malware payload attributed to Mirai
Threat Hunt — feed corroboration
Not present in any configured threat-intel feed.
Details From VirusTotal
No VirusTotal details cached for this IOC. Open the IOC page to query VirusTotal.
References (2)
- Malpedia profile Threatfox IOCs/Threats
-
ThreatFox IOC page
Threatfox IOCs/Threats
Indicator that identifies a malware distribution server (payload delivery). IOC type: ip:port combination that delivery a malware payload. Attributed malware: Mirai (aliases: Katana). Confidence: 100. Observed port: 6969. First seen: 2026-06-18 22:29:25 UTC. Reporter: botnetkiller. Tags: Mirai, nc.
AI Forensic Analysis
Only Available for Registered Users. Sign in to view.