RedLineStealer botnet controller @45.130.41.15

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 45.130.41.15 on port 443 TCP:
$ telnet 45.130.41.15 443
Trying 45.130.41.15…
Connected to 45.130.41.15.
Escape character is ‘^]’

Other malicious domain names hosted on this IP address:
as.dribblingway.site 45.130.41.15
by.greentry.site 45.130.41.15
dogspise.site 45.130.41.15
dos.homereds.site 45.130.41.15
e.silversun.site 45.130.41.15
eq.greentry.site 45.130.41.15
fp.yollowstar.site 45.130.41.15
gw.silversun.site 45.130.41.15
mnt.jacksonwile.site 45.130.41.15
nfy.pilotzone.site 45.130.41.15
nt.rosecar.site 45.130.41.15
pl.yollowstar.site 45.130.41.15
vd.dribblingway.site 45.130.41.15
vg.topstart.site 45.130.41.15
xz.mousehoused.site 45.130.41.15

Referencing malware samples (MD5 hash):
0761d0bb4d20536b4075decf4ac7752f — AV detection: 41 / 69 (59.42%)
0d3bce2fc9c94e0081a53103725c98d1 — AV detection: 30 / 67 (44.78%)
0f7db123d145142719c707374a5848a4 — AV detection: 23 / 66 (34.85%)
1facf16b6b30a9c435075bef502ff4e1 — AV detection: 21 / 64 (32.81%)
2b53286bb7ffd5815d84282d4011d66d — AV detection: 36 / 67 (53.73%)
33eeddd38b08c28a5466eb357ab2401d — AV detection: 23 / 66 (34.85%)
553ad4b599f7c452b22f00f59413ca44 — AV detection: 21 / 66 (31.82%)
6ebf4dbc2f41cfe7c3e55e5a76d2a670 — AV detection: 39 / 68 (57.35%)
969a631044715e387f3b7cd7c64fdb63 — AV detection: 50 / 70 (71.43%)
a121db3e0809289a5c41c44958ff6fa0 — AV detection: 40 / 67 (59.70%)
a1dea4ad56646d36835d8318acf161ee — AV detection: 35 / 68 (51.47%)
a5dac566745c199a3e0d2358c53a8d66 — AV detection: 24 / 65 (36.92%)
a892236d3147787a8093010c68968431 — AV detection: 44 / 68 (64.71%)
a9d63ba83576c19bb1dbad9e85b51ecc — AV detection: 37 / 68 (54.41%)
ae30fabd48bc0db036ab7d81890903a9 — AV detection: 37 / 68 (54.41%)
ca08876db58056ad35cadc2afeb89ab7 — AV detection: 24 / 67 (35.82%)
e551858d7c25a5874ac81a13ca3ca24d — AV detection: 26 / 66 (39.39%)