DCRat botnet controller @15.235.10.108

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 15.235.10.108 on port 8848 TCP:
$ telnet 15.235.10.108 8848
Trying 15.235.10.108…
Connected to 15.235.10.108.
Escape character is ‘^]’

$ nslookup 15.235.10.108
ns5008350.ip-15-235-10.net

Referencing malware samples (MD5 hash):
a9e50ac9ffbb675dfcaea0ab15818bc9 — AV detection: 28 / 67 (41.79%)

Опубликовано
В рубрике ovh.net

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *