DCRat botnet controller @92.63.107.136

The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

DCRat botnet controller located at 92.63.107.136 on port 80 (using HTTP GET):
hXXp://92.63.107.136/Cpu/binmessageframe/supportscriptrule/pluginhtopgenerator/limitmobiledemoCpu/datademoPref/logruleprodmobile/CamMath/antiDjango/WarPythonpluginPref/mobile/systemAutomessagerule/cuttrace/Pythonprodprodrecord/BigloadBase.php

$ nslookup 92.63.107.136
pupokvasa79.fvds.ru

Referencing malware binaries (MD5 hash):
96e94ea39fb8c0b3c6cd1a2d8455e0c3 — AV detection: 14 / 67 (20.90)

Добавить комментарий

Ваш адрес email не будет опубликован.