Malware botnet controller @172.67.191.179

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 172.67.191.179 on port 443 TCP:
http://elv-config.xyz/gate/init.php

$ telnet 172.67.191.179 443
Trying 172.67.191.179…
Connected to 172.67.191.179.
Escape character is ‘^]’

Other malicious domain names hosted on this IP address:
elv-config.xyz 172.67.191.179

Referencing malware samples:
MD5 259795e70808271866b53c69ee79d8af
MD5 5856d7ed2f781e85d221174c5d140897
MD5 a233058732d8434ead5226e0c40557ab
MD5 ca53d7c908eff8fbefc337406939a07d

Добавить комментарий

Ваш адрес email не будет опубликован.