Vjw0rm botnet controller @198.27.77.242

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 198.27.77.242 on port 1780 TCP:
$ telnet 198.27.77.242 1780
Trying 198.27.77.242…
Connected to 198.27.77.242.
Escape character is ‘^]’

Other malicious domain names hosted on this IP address:
btinternational.casacam.net. 120 IN A 198.27.77.242
btinternational.casacam.net. 120 IN A 198.27.77.242

Referencing malware samples:
MD5 651a47b5e2e3638430e6148e79a7e23b
MD5 7eef8f4251de5e1aa8554248af33d922
MD5 bf7564bc839629652fe5afb347c6ad00
MD5 cf4ec0d22c787775c9f46dd0fe19da33

Опубликовано
В рубрике ovh.net

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *