The host at this IP address is currently being used to distribute malware.
Malware distribution located here:
hXXp://neofunkyjunky.com/work/top.exe
neofunkyjunky.com. 600 IN A 45.8.124.229
Malware botnet controller @46.173.214.57 port 443.
$ telnet 45.8.124.229 443
Trying 45.8.124.229…
Connected to 45.8.124.229.
Escape character is ‘^]’
endback.biz. 600 IN A 45.8.124.229
Referencing malware binaries (MD5 hash):
0304056cf9847bfb1b045621ad92a7e5 — AV detection: 27 / 67 (40.30)
122dc9a1e23658f1e3e627976a0c958c — AV detection: 20 / 58 (34.48)
170078e8479cd3772ba22f70ed9be69d — AV detection: 20 / 65 (30.77)
2eee73ce3be3393c642b9c28bfa70ba5 — AV detection: 20 / 65 (30.77)
367cf9c7cab0601b0b4c611ff93fc9dc — AV detection: 23 / 66 (34.85)
3709698dfdf7fa9c2f4a7b41ecad5e13 — AV detection: 34 / 67 (50.75)
387236e50910bb0cedb3ccb62d6b82c5 — AV detection: 27 / 67 (40.30)
40e423236364d69ee2e1cf382880f27a — AV detection: 20 / 65 (30.77)
64806039288ebad82eace99e67ce58ed — AV detection: 20 / 62 (32.26)
7a3e6805e3a4e5452f22a1847117558d — AV detection: 21 / 66 (31.82)
7f64d959ad17e79b21d7d845c9304d0d — AV detection: 23 / 63 (36.51)
93e46bfbfc017321d36d5aadcee2628f — AV detection: 26 / 67 (38.81)
acd4f1abc20c791d50d011af42ddf59b — AV detection: 37 / 59 (62.71)
b51e3461731f5fd3d1f4729015531542 — AV detection: 20 / 65 (30.77)
b981ad56e3a28938efc2987303e8d243 — AV detection: 24 / 66 (36.36)
e36e67b7372bbfa71b83d808a87386af — AV detection: 17 / 60 (28.33)
e3bc740ac201946dbbc9e410ce97c6d3 — AV detection: 25 / 66 (37.88)
f4463ff048f80dcfc7205e23e12a9d6f — AV detection: 27 / 66 (40.91)