AgentTesla botnet controller @172.67.210.108

The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

AgentTesla botnet controller located at 172.67.210.108 on port 80 (using HTTP POST):
hXXp://lab2e1.xyz//inc/741e7bb0442c85.php

$ dig +short lab2e1.xyz
172.67.210.108

Referencing malware binaries (MD5 hash):
449fe744967d2c924fb1ec737187f976 — AV detection: 24 / 67 (35.82)

Other malicious domain names hosted on this IP address:
www.asortie.ro 172.67.210.108
lab2e1.xyz 172.67.210.108

Добавить комментарий

Ваш адрес email не будет опубликован.