Malware botnet controller @65.21.234.58

The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 65.21.234.58 on port 8080 (using HTTP GET):
hXXp://65.21.234.58/pm

$ nslookup 65.21.234.58
65-21-234-58.serverhub.ru

Referencing malware binaries (MD5 hash):
3d2de2a6844ccb71b796ea8d45d425fc — AV detection: 34 / 69 (49.28)
5f469eb17d2ec1b59200f5bb9564252d — AV detection: 29 / 68 (42.65)
64db5220376d31141429386c52417569 — AV detection: 18 / 63 (28.57)
6df2a3b5b2fd8964e57a267507a98a02 — AV detection: 28 / 69 (40.58)
7ccd2bd25fcd0ee6abb9a0b24573572f — AV detection: 17 / 64 (26.56)
8cf05bb9c58fd8b72f3b27d5a54d95d9 — AV detection: 16 / 66 (24.24)
b321e6e61af45ab5989bbd1f2b624a3b — AV detection: 16 / 68 (23.53)
bb46b854b4a367e40e51c0cb4f9ebe1c — AV detection: 36 / 68 (52.94)

Опубликовано
В рубрике hetzner.de

Добавить комментарий

Ваш адрес email не будет опубликован.