OskiStealer botnet controller @172.67.181.62

The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

OskiStealer botnet controller located at 172.67.181.62 on port 80 (using HTTP POST):
hXXp://secureconnection.xyz/7.jpg

$ dig +short secureconnection.xyz
172.67.181.62

Referencing malware binaries (MD5 hash):
ad7d92bbc2ff5804551b86b319de9e0d — AV detection: 41 / 71 (57.75)
c11accc6b91c118a30fc9ea60b72258b — AV detection: 13 / 61 (21.31)

Other malicious domain names hosted on this IP address:
nude-celebs.ru 172.67.181.62
desiremovie.top 172.67.181.62
secureconnection.xyz 172.67.181.62

Добавить комментарий

Ваш адрес email не будет опубликован.