THREATNOIR
Subscribe
Back to Feed
Threat IntelligenceApr 3, 2026

‼️🇷🇺 Forum IP Leak ▪️Forum: Rehub ▪️IP: 5[.]175[.]247[.]131 ▪️Ports: 22, 25 ▪️ASN: 213501 Oni...

Russian darknet forum Rehub infrastructure details leaked including IP and domain.

Read at source

Summary

Infrastructure details for the Rehub Russian darknet forum have been exposed, including the server IP address 5.175.247.131, associated ports (22, 25), ASN 213501, and multiple domain registrations. The leak includes both Tor onion address and clearnet domains associated with the forum. This represents operational security exposure for the forum operators.

Indicators of Compromise

  • ip — 5.175.247.131
  • domain — rehubg7wpn5vuwttbzqrzm5epq6ta5mqm6cbfpn7wtukaskzte3ehcyd.onion
  • domain — rehubcom.ag
  • domain — rehubcom.io
  • domain — damagelab.in

Entities

Rehub (threat_actor)