BitRAT botnet controller @104.208.31.182

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 104.208.31.182 on port 2222 TCP:
$ telnet 104.208.31.182 2222
Trying 104.208.31.182…
Connected to 104.208.31.182.
Escape character is ‘^]’

$ dig +short resereved.nerdpol.ovh
104.208.31.182

Referencing malware samples:
MD5 0b063d06e3f222d05fc72aa50f11930b
MD5 3294ee91b924fd1e934bad97689cf4e7
MD5 3c96da6720139b6a0bf5e1566a49a849
MD5 a7d59de6a017697288a2b7ba23ddafdc

Добавить комментарий

Ваш адрес email не будет опубликован.