Malware botnet controller @212.22.87.217

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 212.22.87.217 on port 443:
$ telnet 212.22.87.217 443
Trying 212.22.87.217…
Connected to 212.22.87.217.
Escape character is ‘^]’

Malicious domains observed on this IP address:
accountreview-binance.com. 600 IN A 212.22.87.217
ch-compliance-binance.com. 600 IN A 212.22.87.217
ch-accounts-binance.com. 600 IN A 212.22.87.217
ch-compliance-binance.com. 600 IN A 212.22.87.217
ch-investigation-binance.com. 600 IN A 212.22.87.217
dnb-mobilbankno.com. 600 IN A 212.22.87.217
es-blockchain.com. 600 IN A 212.22.87.217
espana-blockchain.com. 600 IN A 212.22.87.217
m-sparebank.info. 600 IN A 212.22.87.217
nordea-norge.info. 600 IN A 212.22.87.217
nordeafi-peruutus.com. 600 IN A 212.22.87.217
opfi-peruutus.com. 600 IN A 212.22.87.217
ph-accounts-binance.com. 600 IN A 212.22.87.217
tesla-santander.com. 600 IN A 212.22.87.217

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *