NanoCore botnet controller @51.103.152.3

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 51.103.152.3 on port 9084 TCP:
$ telnet 51.103.152.3 9084
Trying 51.103.152.3…
Connected to 51.103.152.3.
Escape character is ‘^]’

Other malicious domain names hosted on this IP address:
dosiokal.kozow.com 51.103.152.3
hindtous.casacam.net 51.103.152.3
hostrio.freeddns.org 51.103.152.3
maskuoslq.freeddns.org 51.103.152.3
sakrolod.freeddns.org 51.103.152.3
salksio.mywire.org 51.103.152.3
touruksdd.ooguy.com 51.103.152.3

Referencing malware samples (MD5 hash):
085d830645107ef758e08b9adb9e27fa — AV detection: 40 / 71 (56.34%)
0db0fb15b6c2261148b0b45d47624cf5 — AV detection: 39 / 71 (54.93%)
1bafebe660c59db821a1c69947d64782 — AV detection: 23 / 71 (32.39%)
220b4951551279c08d5e9fd743dc7df4 — AV detection: 30 / 70 (42.86%)
22b96b9289160745acd684c182fb7c00 — AV detection: 39 / 71 (54.93%)
260814589aa1ae38089f19f01a5d6c58 — AV detection: 20 / 71 (28.17%)
294e01793017ef4957a7c5bd867cc63e — AV detection: 17 / 71 (23.94%)
2d51746718190872e4fabd97d4b13eba — AV detection: 29 / 68 (42.65%)
2d8a59a98550f2c6262bb79782be7cae — AV detection: 36 / 69 (52.17%)
7037a9dda1193880b73b164da5f3dade — AV detection: 19 / 70 (27.14%)
729d019d68eafd35295647c3b3e04669 — AV detection: 21 / 71 (29.58%)
7495172c88200b1a0938f0d96f4db3a2 — AV detection: 29 / 71 (40.85%)
772adc82901f5af3d9656d64715d73df — AV detection: 21 / 71 (29.58%)
8ba5b670670b9a7351b60c4cc1f9bb97 — AV detection: 41 / 70 (58.57%)
a7f67bfdf63962d5ed24ee8e91e54882 — AV detection: 35 / 71 (49.30%)
a8717b24cca2b4dde0c29dbb87ce602f — AV detection: 28 / 70 (40.00%)
c56f19ecdc05dbc18a0b7f3ac0eaa0c6 — AV detection: 7 / 70 (10.00%)
cf8357e5aaddfaa3d6f561d072844170 — AV detection: 20 / 71 (28.17%)
d51a6bb8cefe4aa5c8280252e938b7aa — AV detection: 43 / 71 (60.56%)
e48d8df1a737eb8961f2c67a06517ddb — AV detection: 28 / 72 (38.89%)
e6893c0b9e4215dbfac885965b1acca6 — AV detection: 27 / 70 (38.57%)
f288bb966b74d5327c4b5e4da04a666a — AV detection: 34 / 71 (47.89%)
f95923cc3205cc9eafe0b6924bed140a — AV detection: 12 / 70 (17.14%)

Добавить комментарий

Ваш адрес email не будет опубликован.