OrcusRAT botnet controller @51.83.134.252

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 51.83.134.252 on port 17650 TCP:
$ telnet 51.83.134.252 17650
Trying 51.83.134.252…
Connected to 51.83.134.252.
Escape character is ‘^]’

$ nslookup 51.83.134.252
vps-4e7706d3.vps.ovh.net

$ dig +short tools.3utilities.com
51.83.134.252

Referencing malware samples (MD5 hash):
ac8be183acf3079cd5475f8c170a98ae — AV detection: 43 / 69 (62.32%)

Опубликовано
В рубрике ovh.net

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *