Malware botnet controller @188.120.232.237

The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 188.120.232.237 on port 80 (using HTTP GET):
hXXp://188.120.232.237/API/2/configure.php

$ nslookup 188.120.232.237
artemy.gvozdik.fvds.ru

Referencing malware binaries (MD5 hash):
04905f7a5d19e2dba9634cb7bb246af7 — AV detection: 37 / 69 (53.62)
0dc969799cd07a91d7d00825bf6d7e9e — AV detection: 41 / 69 (59.42)
4a593dc51ea60a7e307a321b6f051179 — AV detection: 17 / 65 (26.15)
8fa81f3e0a6e0015be4c633c855f7778 — AV detection: 24 / 69 (34.78)
9394830e29ac4f0f02ecce3c8d6de3ea — AV detection: 26 / 68 (38.24)

Добавить комментарий

Ваш адрес email не будет опубликован.