DCRat botnet controller @82.146.59.136

The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

DCRat botnet controller located at 82.146.59.136 on port 80 (using HTTP GET):
hXXp://82.146.59.136/_/datalife45/TrackProcessDle/JavascriptUpdateGeneratordlelocal.php

$ nslookup 82.146.59.136
nolove209.fvds.ru

Referencing malware binaries (MD5 hash):
bc43cff296c2977a382f6569ed0db331 — AV detection: 40 / 65 (61.54)
f11f7beeba496e39707fe4bb580c1dd8 — AV detection: 28 / 70 (40.00)

Добавить комментарий

Ваш адрес email не будет опубликован.