Loki botnet controller @172.67.197.66

The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Loki botnet controller located at 172.67.197.66 on port 80 (using HTTP POST):
hXXp://asiaoil.bar//bobby/five/fre.php

$ dig +short asiaoil.bar
172.67.197.66

Referencing malware binaries (MD5 hash):
98370a11c6df87e4e76bfb1421c2f187 — AV detection: 28 / 66 (42.42)
c82c6bdb3e6c126ed700415933fa5799 — AV detection: 34 / 69 (49.28)

Other malicious domain names hosted on this IP address:
www.dailyhabitjuice.com.au 172.67.197.66
asiaoil.bar 172.67.197.66

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *