njrat botnet controller @35.239.113.160

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 35.239.113.160 on port 5050 TCP:
$ telnet 35.239.113.160 5050
Trying 35.239.113.160…
Connected to 35.239.113.160.
Escape character is ‘^]’

milla.publicvm.com. 120 IN A 35.239.113.160

$ nslookup 35.239.113.160
160.113.239.35.bc.googleusercontent.com

Referencing malware samples (MD5 hash):
a1dc13ee86b165344455083572e15e41 — AV detection: 25 / 70 (35.71%)

Опубликовано
В рубрике google.com

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *