RaccoonStealer botnet controller @139.162.146.59

The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

RaccoonStealer botnet controller located at 139.162.146.59 on port 80 (using HTTP POST):
hXXp://139.162.146.59/

$ nslookup 139.162.146.59
139-162-146-59.ip.linodeusercontent.com

Referencing malware binaries (MD5 hash):
92d7f3e183a36f0d13c1f09bff7a6cad — AV detection: 18 / 59 (30.51)
9581807e44614094b42b235db963fdbe — AV detection: 56 / 69 (81.16)
9a691622fc030fe16d5b27a86d233020 — AV detection: 30 / 68 (44.12)
d163e4d75e3e115cce99679d08595c6e — AV detection: 46 / 66 (69.70)

Опубликовано
В рубрике linode.com

Добавить комментарий

Ваш адрес email не будет опубликован.